WordPress Plugin Vulnerabilities

Social Slider Widget < 1.8.5 - Authenticated Reflected Cross-Site Scripting (XSS)

Description

The plugin allowed Authenticated Reflected XSS in the plugin settings page as the ‘token_error’ parameter can be controlled by users and it is directly echoed without being sanitized

Proof of Concept

Affects Plugins

Plugin icon
instagram-slider-widget
Fixed in 1.8.5

References

CVE
CVE-2021-24196
URL
https://purinechu.github.io/posts/social_slider_widget_reflected_xss/

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
9.6 (critical)

Miscellaneous

Original Researcher
purine chu
Submitter
purine chu
Submitter website
https://purinechu.github.io/
Submitter twitter
purinechu
Verified
Yes
WPVDB ID
bb20d732-a5e4-4140-ab51-b2aa1a53db12

Timeline

Publicly Published
2021-03-14 (about 4 years ago)
Added
2021-03-17 (about 4 years ago)
Last Updated
2021-03-20 (about 4 years ago)

Other

Published
Title
Published
2022-05-09
Title
Slideshow <= 2.3.1 - Admin+ Stored Cross-Site Scripting
Published
2024-11-28
Title
Simple Popup <= 4.6 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2025-06-27
Title
Beauty Contact Popup Form <= 6.0 - Authenticated (Administrator+) Stored Cross-Site Scripting
Published
2024-10-24
Title
Namaste! LMS < 2.6.4.1 - Authenticated (Subscriber+) Stored Cross-Site Scripting
Published
2025-02-23
Title
AR For WordPress < 7.8 - Authenticated (Contributor+) Stored Cross-Site Scripting