WordPress Plugin Vulnerabilities

Google XML Sitemaps <= 4.0.8 - Authenticated Reflected XSS (via HOST header)

Description

The plugin contains a Paypal donate button that is echoing the global variable HTTP_HOST, which can be manipulated by the visitor.

Vulnerable Code:

sitemap-ui.php L1310
echo 'http://' . $_SERVER['HTTP_HOST']...

Affects Plugins

References

Classification

Type
XSS
CWE

Miscellaneous

Submitter
Gerard Arall
Verified
No

Timeline

Publicly Published
2017-03-01 (about 6 years ago)
Added
2017-03-03 (about 6 years ago)
Last Updated
2017-07-26 (about 6 years ago)

Other