WordPress Plugin Vulnerabilities

Slider Hero < 8.4.4 - Admin+ Stored Cross-Site Scripting

Description

The plugin does not escape the slider Name, which could allow high-privileged users to perform Cross-Site Scripting attacks.

Proof of Concept

Create or edit a Slide and put the following payload in the Name field: " onfocus=alert(/XSS/) autofocus="

The XSS will be triggered when editing the slide again

Affects Plugins

slider-hero

Fixed in version 8.4.4

References

CVE

CVE-2022-3074

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

Miscellaneous

Original Researcher

yuyudhn

Submitter

yuyudhn

Submitter website

https://www.linuxsec.org

Submitter twitter

yuyudhn

Verified

Yes

WPVDB ID

90ebaedc-89df-413f-b22e-753d4dd5e1c3

Timeline

Publicly Published

2022-09-05 (about 8 months ago)

Added

2022-09-05 (about 8 months ago)

Last Updated

2022-09-05 (about 8 months ago)

Our Other Services

WPScan WordPress Security Plugin