WordPress Plugin Vulnerabilities

Gravity Forms < 2.0.7 - Authenticated Blind Cross-Site Scripting (XSS)

Description

A blind XSS vulnerability exists in the GravityForms plugin prior to version 2.0.7, in the select option dropdown boxes on forms. If the select column is displayed on the gf_entries page when viewed in the Dashboard, the code is executed by the admin / viewer of the submissions.

This vulnerability was responsibly disclosed to the vendor, with documentation, images, and proof of concept. Version 2.0.7 was delivered to the researcher to confirm the vulnerability had been patched, and an adequate timeframe was agreed upon with the vendor before public disclosure, to allow customers time to update their installations.

Affects Plugins

Plugin icon
gravityforms
Fixed in 2.0.7

References

URL
https://www.gravityforms.com/gravity-forms-v2-0-7-released/

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Submitter
c0mmand3rOpSec
Submitter website
http://c0mmand3ropsec.blogspot.com/
Submitter twitter
@c0mmand3rOpSec
Verified
No
WPVDB ID
978f6645-9187-4548-99ae-be6422d2ba46

Timeline

Publicly Published
2016-10-13 (about 9 years ago)
Added
2016-10-17 (about 9 years ago)
Last Updated
2019-11-01 (about 6 years ago)

Other

Published
Title
Published
2026-04-17
Title
Pz-LinkCard <= 2.5.8.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes
Published
2025-05-01
Title
Blog2Social: Social Media Auto Post & Scheduler < 8.4.0 - Contributor+ Stored XSS
Published
2024-10-24
Title
Namaste! LMS < 2.6.4.1 - Authenticated (Subscriber+) Stored Cross-Site Scripting
Published
2024-10-15
Title
G Meta Keywords <= 1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2023-05-11
Title
Pinterest RSS Widget <= 2.3.1 - Contributor+ Stored Cross-Site Scripting via shortcode