logoWordPressPluginsThemesAPISubmitContact
search-icon
logo
search-icon
WordPressPluginsThemesAPISubmitContactSecurity Scanner
Register

LiteSpeed Cache < 3.6.1 - Authenticated Stored Cross-Site Scripting

Description

The plugin does not sanitise invalid IPs given in its Toolbox page before displaying them in an error message.

Proof of Concept

Submit a payload such as <img src onerror=alert(/XSS/)> in the Admin IPs section of the Toolbox (/wp-admin/admin.php?page=litespeed-toolbox)

Affects Plugins

litespeed-cache

Fixed in version 3.6.1

References

CVE

CVE-2020-29172

URL

https://plugins.trac.wordpress.org/changeset/2443924/litespeed-cache/trunk/src/admin-display.cls.php

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

Miscellaneous

Original Researcher

WonTae Jang

Verified

Yes

WPVDB ID

8ef35524-d996-4285-aca2-dc62e02c074d

Timeline

Publicly Published

2020-12-26 (about 4 months ago)

Added

2020-12-26 (about 4 months ago)

Last Updated

2020-12-28 (about 4 months ago)

Our Other Services

WPScan WordPress Security Plugin