WordPress Plugin Vulnerabilities

Ditty < 3.1.25 - Reflected XSS

Description

The plugin does not sanitise and escape some parameters and generated URLs before outputting them back in attributes, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin.

Proof of Concept

Affects Plugins

Plugin icon
ditty-news-ticker
Fixed in 3.1.25

References

CVE
CVE-2023-4148

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
7.1 (high)

Miscellaneous

Original Researcher
Animesh Gaurav
Submitter
Animesh Gaurav
Submitter twitter
bizanimesh
Verified
Yes
WPVDB ID
aa39de78-55b3-4237-84db-6fdf6820c58d

Timeline

Publicly Published
2023-08-29 (about 2 years ago)
Added
2023-08-30 (about 2 years ago)
Last Updated
2023-08-30 (about 2 years ago)

Other

Published
Title
Published
2024-06-20
Title
Master Slider < 3.10.5 - Reflected Cross-Site Scripting
Published
2024-02-27
Title
Simple Tweet <= 1.4.0.2 - Authenticated (Author+) Stored Cross-Site Scripting
Published
2023-03-03
Title
Yet Another Stars Rating < 3.1.3 - Subscriber+ Stored XSS
Published
2025-04-01
Title
VForm < 3.1.10 - Reflected Cross-Site Scripting
Published
2025-03-31
Title
CoverManager <= 0.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting