Help Desk WP <= 1.2.0 – Editor+ Stored XSS | CVE 2023-1019 | Plugin Vulnerabilities

Description

The plugin does not sanitise and escape some parameters, which could allow users with a role as low as Editor to perform Cross-Site Scripting attacks.

Proof of Concept

1. Using a user with Editor Role privileges, go to the support page assigned for the Help Desk WP Plugin.
2. Click on "Add New Ticket", and fill the form with dummy data.
3. Intercept the request using an HTTP Proxy, such as BurpSuite.
4. Replace the "description" form data with the following XSS payload: <img src=q onerror=prompt('XSS')>
5. Send the request.
6. As an Administrator user, open up the ticket using the Help Desk WP Plugin through Wordpress Dashboard.
7. The XSS payload will get executed.

Affects Plugins

No known fix

References

CVE

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

Ameen Alkurdy

Submitter

Ameen Alkurdy

Submitter website

http://ameenalkurdy.github.io/

Submitter twitter

Verified

Yes

WPVDB ID

a6331ca8-9603-4134-af39-8e77ac9d511c

Timeline

Publicly Published

2023-04-19 (about 2 years ago)

Added

2023-04-19 (about 2 years ago)

Last Updated

2023-04-19 (about 2 years ago)

Other

Published

Title

Published

2025-09-16

Title

Media Player Addons for Elementor < 1.0.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widget Fields

Published

2024-12-02

Title

Scratch & Win – Giveaways and Contests < 2.7.0 - Authenticated (Contributor+) Stored Cross-Site Scripting

Published

2024-04-18

Title

Customer Reviews for WooCommerce < 5.48.0 - Reflected Cross-Site Scripting via 's'

Published

2025-04-10

Title

Stop Registration Spam <= 1.24 - Reflected Cross-Site Scripting

Published

2022-04-28

Title

Countdown & Clock < 2.3.3 - Reflected Cross-Site Scripting