Inspirational Quote Rotator <= 1.0.0 – Admin+ Stored Cross-Site Scripting | CVE 2021-24771 | Plugin Vulnerabilities

Description

The plugin does not sanitize and escape some of its quote fields when adding/editing a quote as admin, leading to Stored Cross-Site scripting issues when the quote is output in the "Quotes list" even when the unfiltered_html capability is disallowed

Proof of Concept

Add/edit a quote (/wp-admin/options-general.php?page=iqr-settings) and put the following payload in the Title or Content: <script>alert(/XSS/)</script>

Affects Plugins

inspirational-quote-rotator

No known fix

References

CVE

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

Vishal Mohan

Submitter

Vishal Mohan

Verified

Yes

WPVDB ID

a6d57fda-79a7-4bf8-b18e-8cf0a4efd1b3

Timeline

Publicly Published

2021-11-15 (about 2 years ago)

Added

2021-11-15 (about 2 years ago)

Last Updated

2022-04-11 (about 2 years ago)

Other

Published

Title

Published

2024-03-26

Title

Elementor Website Builder < 3.20.3 - Contributor+ DOM Stored XSS

Published

2021-08-02

Title

VDZ Google Analytics or Google Tag Manager / GTM < 1.6.0 - Authenticated Stored XSS

Published

2020-02-03

Title

Ninja Forms < 3.4.23 - CSRF to Stored Cross-Site Scripting (XSS)

Published

2022-11-03

Title

Beautiful Cookie Consent Banner < 2.9.1 - Admin+ Stored XSS

Published

2023-05-15

Title

Stop Spammers Security < 2023 - Reflected XSS