WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

E2Pdf < 1.16.45 - Admin+ Stored Cross-Site Scripting (XSS)

Description

The plugin does not sanitise and escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed

Proof of Concept

Refer to https://mikadmin.fr/tech/XSS-Stored-E2Pdf-798ef69b0e13c36acf5446358d57c965Dx90666bNvCw98.pdf

Affects Plugins

e2pdf
Fixed in version 1.16.45

References

CVE
CVE-2022-0535
URL
https://plugins.trac.wordpress.org/changeset/2675049/e2pdf

Classification

Type

XSS

OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Original Researcher

Mika

Submitter

Mika

Submitter website
https://mikadmin.fr/
Submitter twitter
mika_sec
Verified

Yes

WPVDB ID
a4162e96-a3c5-4f38-a60b-aa3ed9508985

Timeline

Publicly Published

2022-02-09 (about 4 months ago)

Added

2022-02-09 (about 4 months ago)

Last Updated

2022-04-08 (about 3 months ago)

Our Other Services

WPScan WordPress Security Plugin