WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

WP Quick FrontEnd Editor <= 5.5 - Authenticated Settings Change leading to Stored XSS

Description

The AJAX action la_save_front_editor lacks any capability and CSRF checks, allowing low privilege users to modify the plugin's settings. Due to the lack of sanitisation on some settings, this could lead to a Stored XSS issue as well which will be triggered when a user is logged in

Affects Plugins

wp-quick-front-end-editor
No known fix - plugin closed

References

URL
https://blog.nintechnet.com/multiple-vulnerabilities-in-wordpress-wp-quick-frontend-editor-plugin-unpatched/

Classification

Type

ACCESS CONTROLS

OWASP top 10
A5: Broken Access Control
CWE
CWE-284

Miscellaneous

Original Researcher

Jerome Bruandet (nintechnet)

Verified

No

WPVDB ID
b4e6948f-ae4b-4256-ae93-7b0266785edd

Timeline

Publicly Published

2021-01-12 (about 2 years ago)

Added

2021-01-12 (about 2 years ago)

Last Updated

2021-01-13 (about 2 years ago)

Our Other Services

WPScan WordPress Security Plugin