Themes Vulnerabilities

Superio - Job Board < 1.2.33 - Subscriber+ Stored Cross-Site Scripting

Description

The theme does not sanitise and escape some parameters, which could allow users with a role as low as a subscriber to perform Stored Cross-Site Scripting attacks.

Proof of Concept

As a candidate, add the following payload on the Social Network option: javascript:alert(1)

As a recruiter, access the candidate page and click on the Social Network icon to see the payload trigger the alert.

Affects Themes

superio
Fixed in 1.2.33

References

CVE
CVE-2022-4114
URL
https://themeforest.net/item/superio-job-board-wordpress-theme/32180231
YouTube Video

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
3.4 (low)

Miscellaneous

Original Researcher
Veshraj Ghimire
Submitter
Veshraj Ghimire
Submitter website
https://veshrajghimire.com.np
Submitter twitter
GhimireVeshraj
Verified
Yes
WPVDB ID
7569f4ac-05c9-43c9-95e0-5cc360524bbd

Timeline

Publicly Published
2022-12-09 (about 1 years ago)
Added
2022-12-09 (about 1 years ago)
Last Updated
2022-12-09 (about 1 years ago)

Other

Published
Title
Published
2023-01-24
Title
Watu Quiz < 3.3.8.2 - Reflected XSS
Published
2023-02-07
Title
Yellow Yard < 2.8.12 - Contributor+ Stored XSS
Published
2023-06-09
Title
WP Mail Catcher < 2.1.3 - Unauthenticated Stored Cross-Site Scripting
Published
2024-03-25
Title
WordPress Meta Data and Taxonomies Filter (MDTF) < 1.3.3 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2020-04-20
Title
GTranslate < 2.8.52 - Unauthenticated Reflected Cross Site Scripting (XSS)