WP Shieldon 1.6.3 - Unauthenticated Cross-Site Scripting (XSS)

Description

The WP Shieldon WordPress plugin, versions 1.6.3 and below, were vulnerable to Unauthenticated Reflected Cross-Site Scripting (XSS) when the CAPTCHA page is shown.

This was due to $_SERVER['REQUEST_URI'] being echoed to a page without any encoding.

Proof of Concept

http://www.example.com/?<script>alert(1)</script>

Affects Plugins

wp-shieldon

No known fix

References

CVE

CVE-2021-24124

YouTube Video

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

Miscellaneous

Original Researcher

Johto Robbie

Verified

Yes

WPVDB ID

8d0eb0b4-0cc0-44e5-b720-90b01df3a6ee

Timeline

Publicly Published

2021-01-18 (about 8 months ago)

Added

2021-01-25 (about 8 months ago)

Last Updated

2021-01-29 (about 8 months ago)

Our Other Services

WPScan WordPress Security Plugin