WordPress Plugin Vulnerabilities
LinkedIn Company Updates <= 1.5.3 - Admin+ Stored Cross-Site Scripting
Description
The plugin does not sanitise and escape its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
Proof of Concept
Put the following payload in the "Client ID" settings: "/><img src=x onerror=alert(/XSS/)>
Affects Plugins
No known fix
References
Classification
Miscellaneous
Original Researcher
Vinay Varma Mudunuri, Krishna Harsha Kondaveeti
Submitter
Vinay Varma Mudunuri
Verified
Yes
Timeline
Publicly Published
2022-06-21 (about 9 months ago)
Added
2022-06-21 (about 9 months ago)
Last Updated
2022-06-21 (about 9 months ago)