WordPress Plugin Vulnerabilities

WP Product Review < 3.7.6 - Unauthenticated Stored Cross-Site Scripting (XSS)

Description

All user input data is sanitized but the WordPress function used can be bypassed when the parameter is set inside an HTML attribute. A successful attack results in malicious scripts being injected in all the site’s products.

Affects Plugins

Plugin icon
wp-product-review
Fixed in 3.7.6

References

URL
https://labs.sucuri.net/unauthenticated-stored-cross-site-scripting-in-wp-support-review/
URL
https://plugins.trac.wordpress.org/changeset/2304778/wp-product-review

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
7.2 (high)

Miscellaneous

Original Researcher
John Castro (Sucuri)
Verified
No
WPVDB ID
9d2e8d9e-0976-4ad0-b1e7-a95dd714e2b7

Timeline

Publicly Published
2020-05-14 (about 6 years ago)
Added
2020-05-14 (about 5 years ago)
Last Updated
2020-05-15 (about 5 years ago)

Other

Published
Title
Published
2020-07-24
Title
JobSearch < 1.5.6 - Unauthenticated Reflected XSS
Published
2014-08-01
Title
Simple Slider 1.0 - New Image URL Field XSS
Published
2024-07-10
Title
Tutor LMS < 2.7.3 - Authenticated (Tutor Instructor+) Stored Cross-Site Scripting
Published
2025-03-31
Title
Infusionsoft Web Form JavaScript <= 1.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2025-08-01
Title
Qi Addons for Elementor < 1.9.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via TypeOut Text Widget