Books & Papers <= 0.20210223 – Admin+ Stored Cross-Site Scripting | CVE 2022-1156 | Plugin Vulnerabilities

Description

The plugin does not escape its Custom DB prefix settings, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed

Proof of Concept

Put the following payload in the Custom DB Prefix settings of the plugin: Books_n_Papers" style=animation-name:rotation onanimationstart=alert(/XSS/)//

Affects Plugins

No known fix

References

CVE

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

fuzzyap1

Submitter

fuzzyap1

Verified

Yes

WPVDB ID

76ad4273-6bf4-41e9-99a8-bf6d634608ac

Timeline

Publicly Published

2022-03-29 (about 2 years ago)

Added

2022-03-29 (about 2 years ago)

Last Updated

2022-04-13 (about 2 years ago)

Other

Published

Title

Published

2024-04-09

Title

Premium Addons for Elementor < 4.10.28 - Contributor+ Stored Cross-Site Scripting via Button

Published

2024-03-22

Title

Page Builder by SiteOrigin < 2.29.7 - Contributor+ Stored XSS

Published

2022-08-02

Title

Social Slider Feed < 2.0.6 - Admin+ Stored XSS via API Key

Published

2020-05-28

Title

bbPress < 2.6.5 - Authenticated Stored Cross-Site Scripting via the forums list table

Published

2024-03-07

Title

Premium Addons PRO < 2.9.13 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multi Scroll Widget