Interactive Medical Drawing of Human Body < 2.6 – Admin+ Stored XSS | CVE 2022-0388

Description

The plugin does not sanitise and escape the Link field, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.

Proof of Concept

Put the following payload in the Link settings of a body party and save the change: "></script><script>alert(/XSS-link/)</script>

Affects Plugins

interactive-medical-drawing-of-human-body

Fixed in 2.6

References

CVE

CVE-2022-0388

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

CVSS

3.4 (low)

Miscellaneous

Original Researcher

Rubina Shaikh

Submitter

Rubina Shaikh

Submitter website

https://www.linkedin.com/in/rubina-shaikh-70b852166/

Verified

Yes

WPVDB ID

7d4ad1f3-6d27-4655-9796-ce370ef5fced

Timeline

Publicly Published

2022-03-07 (about 3 years ago)

Added

2022-03-07 (about 3 years ago)

Last Updated

2022-06-17 (about 3 years ago)

Other

Published

Title

Published

2024-01-30

Title

CC BMI Calculator < 2.1.0 - Contributor+ Stored XSS

Published

2023-10-17

Title

WooODT Lite < 2.4.8 - Reflected XSS

Published

2025-10-10

Title

Draft List < 2.6.2 - Authenticated (Contributor+) Stored Cross-Site Scripting

Published

2024-05-14

Title

Picture Gallery < 1.5.12 - Authenticated (Author+) Stored Cross-Site Scripting

Published

2025-07-17

Title

WooCommerce Shop Page Builder <= 2.27.7 - Reflected Cross-Site Scripting