logoWordPressPluginsThemesAPISubmitContact
search-icon
logo
search-icon
WordPressPluginsThemesAPISubmitContactSecurity Scanner
Register

WP Quick FrontEnd Editor <= 5.5 - Authenticated Settings Change leading to Stored XSS

Description

The AJAX action la_save_front_editor lacks any capability and CSRF checks, allowing low privilege users to modify the plugin's settings. Due to the lack of sanitisation on some settings, this could lead to a Stored XSS issue as well which will be triggered when a user is logged in

Affects Plugins

wp-quick-front-end-editor

No known fix - plugin closed

References

URL

https://blog.nintechnet.com/multiple-vulnerabilities-in-wordpress-wp-quick-frontend-editor-plugin-unpatched/

Classification

Type

ACCESS CONTROLS

OWASP top 10

A5: Broken Access Control

CWE

CWE-284

Miscellaneous

Original Researcher

Jerome Bruandet (nintechnet)

Verified

No

WPVDB ID

b4e6948f-ae4b-4256-ae93-7b0266785edd

Timeline

Publicly Published

2021-01-12 (about 8 months ago)

Added

2021-01-12 (about 8 months ago)

Last Updated

2021-01-13 (about 8 months ago)

Our Other Services

WPScan WordPress Security Plugin