WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

Loading Page with Loading Screen < 1.0.83 - Admin+ Stored Cross-Site Scripting

Description

The plugin does not escape its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.

Proof of Concept

Go to Settings -> Loading Page, in the "Display loading screen in" settings, select either "specific pages" or "specific post types" and ut the following payload in the related text field: "onmouseover=alert(/XSS/)//

Affects Plugins

loading-page
Fixed in version 1.0.83

References

CVE
CVE-2022-2169

Classification

Type

XSS

OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Original Researcher

Nikhil Kapoor

Submitter

Nikhil Kapoor

Submitter website
https://www.linkedin.com/in/nikhil786/
Verified

Yes

WPVDB ID
a9f4aab7-b42b-4bb6-b05d-05407f935230

Timeline

Publicly Published

2022-06-23 (about 9 months ago)

Added

2022-06-23 (about 9 months ago)

Last Updated

2022-06-23 (about 9 months ago)

Our Other Services

WPScan WordPress Security Plugin