WordPress Plugin Vulnerabilities

Salon Booking System < 9.6.3 - Unauthenticated Stored XSS

Description

The plugin does not properly sanitize and escape the 'Mobile Phone' field when booking an appointment, allowing customers to conduct Stored Cross-Site Scripting attacks. The payload gets triggered when an admin visits the 'Customers' page and the malicious script is executed in the admin context.

Proof of Concept

Affects Plugins

Plugin icon
salon-booking-system
Fixed in 9.6.3

References

CVE
CVE-2024-2101

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
8.8 (high)

Miscellaneous

Original Researcher
Priyanka Pande
Submitter
Priyanka Pande
Verified
Yes
WPVDB ID
b3a0bb3f-50b2-4dcb-b23c-b08480363a4a

Timeline

Publicly Published
2024-03-27 (about 1 year ago)
Added
2024-03-27 (about 1 year ago)
Last Updated
2024-03-28 (about 1 year ago)

Other

Published
Title
Published
2022-03-02
Title
Amelia < 1.0.47 - Unauthenticated Stored XSS via lastName
Published
2024-10-31
Title
SKSDEV Toolkit <= 1.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2024-11-08
Title
Rig Elements For Elementor <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2022-12-27
Title
Search & Filter < 1.2.16 - Contributor+ Stored XSS
Published
2022-11-22
Title
Flowplayer Video Player < 1.0.5 - Contributor+ Stored XSS