WordPress Plugin Vulnerabilities
Clipr <= 1.2.3 - Admin+ Stored Cross-Site Scripting
Description
The plugin does not sanitise and escape its API Key settings before outputting it in an attribute, leading to a Stored Cross-Site Scripting issue even when the unfiltered_html capability is disallowed
Proof of Concept
Put the following payload in the API Key settings of the plugin: '></script><script>alert(/XSS/)</script> The XSS will be triggered when viewing the settings again, as well as all frontend pages
Affects Plugins
No known fix - plugin closed
References
Classification
Miscellaneous
Original Researcher
Hassan Khan Yusufzai - Splint3r7
Verified
Yes
Timeline
Publicly Published
2022-03-30 (about 1 years ago)
Added
2022-03-30 (about 1 years ago)
Last Updated
2022-05-04 (about 1 years ago)