WordPress < 5.4.2 - Authenticated XSS via Media Files

Description

Props to Luigi – (gubello.me) for discovering an XSS issue where authenticated users with upload permissions are able to add JavaScript to media files.

Affects WordPresses

5.4.1

Fixed in version 5.4.2✓

5.4

Fixed in version 5.4.2✓

5.3.3

Fixed in version 5.3.4✓

5.3.2

Fixed in version 5.3.4✓

5.3.1

Fixed in version 5.3.4✓

5.3

Fixed in version 5.3.4✓

5.2.6

Fixed in version 5.2.7✓

5.2.5

Fixed in version 5.2.7✓

5.2.4

Fixed in version 5.2.7✓

5.2.3

Fixed in version 5.2.7✓

References

CVE

CVE-2020-4047

URL

https://wordpress.org/news/2020/06/wordpress-5-4-2-security-and-maintenance-release/

URL

https://github.com/WordPress/wordpress-develop/security/advisories/GHSA-8q2w-5m27-wm27

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

Miscellaneous

Original Researcher

Luigi (gubello.me)

Verified

WPVDB ID

741d07d1-2476-430a-b82f-e1228a9343a4

Timeline

Publicly Published

2020-06-11 (about 1 years ago)

Added

2020-06-11 (about 1 years ago)

Last Updated

2020-06-13 (about 1 years ago)

Our Other Services

WPScan WordPress Security Plugin