WordPress Plugin Vulnerabilities

Slider Hero < 8.4.4 - Admin+ Stored Cross-Site Scripting

Description

The plugin does not escape the slider Name, which could allow high-privileged users to perform Cross-Site Scripting attacks.

Proof of Concept

Create or edit a Slide and put the following payload in the Name field: " onfocus=alert(/XSS/) autofocus="

The XSS will be triggered when editing the slide again

Affects Plugins

Plugin icon
slider-hero
Fixed in 8.4.4

References

CVE
CVE-2022-3074

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
3.4 (low)

Miscellaneous

Original Researcher
yuyudhn
Submitter
yuyudhn
Submitter website
https://www.linuxsec.org
Submitter twitter
yuyudhn
Verified
Yes
WPVDB ID
90ebaedc-89df-413f-b22e-753d4dd5e1c3

Timeline

Publicly Published
2022-09-05 (about 1 years ago)
Added
2022-09-05 (about 1 years ago)
Last Updated
2022-09-05 (about 1 years ago)

Other

Published
Title
Published
2023-10-12
Title
Simple Tweet <= 1.4.0.2 - Admin+ Stored XSS
Published
2023-04-14
Title
Motor Racing League <= 1.9.9 - Admin+ XSS
Published
2017-02-14
Title
Easy Table < 1.7 - Admin+ Stored Cross-Site Scripting
Published
2023-05-12
Title
Booking Ultra Pro < 1.1.7 - Subscriber+ Settings Update
Published
2021-12-01
Title
Booster for WooCommerce < 5.4.9 - Reflected Cross-Site Scripting in General Module