WordPress Plugin Vulnerabilities

Give < 2.17.3 - Reflected Cross-Site Scripting via Import Tool

Description

The plugin does not escape the json parameter before outputting it back in an attribute in the Import admin dashboard, leading to a Reflected Cross-Site Scripting

Proof of Concept

Affects Plugins

Plugin icon
give
Fixed in 2.17.3

References

CVE
CVE-2022-0252
URL
https://plugins.trac.wordpress.org/changeset/2659032

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
6.1 (medium)

Miscellaneous

Original Researcher
ZhongFu Su(JrXnm) of Wuhan University
Submitter
ZhongFu Su(JrXnm) of Wuhan University
Submitter website
https://blog.szfszf.top
Submitter twitter
JrXnm
Verified
Yes
WPVDB ID
b0e551af-087b-43e7-bdb7-11d7f639028a

Timeline

Publicly Published
2022-01-18 (about 3 years ago)
Added
2022-01-18 (about 3 years ago)
Last Updated
2022-09-26 (about 3 years ago)

Other

Published
Title
Published
2025-08-20
Title
Risk Free Cash On Delivery (COD) - WooCommerce <= 1.0.4 - Authenticated (Administrator+) Stored Cross-Site Scripting
Published
2025-02-10
Title
HT Mega – Absolute Addons For Elementor < 2.8.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Countdown Widget
Published
2023-11-07
Title
TWB Woocommerce Reviews < 1.7.6 - Admin+ Stored XSS
Published
2024-12-02
Title
FAT Services Booking <= 5.6 - Authenticated (Subscriber+) Stored Cross-Site Scripting
Published
2024-05-22
Title
Awesome Contact Form7 for Elementor < 3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via AEP Contact Form 7 Widget