WordPress Plugin Vulnerabilities

All 404 Redirect to Homepage < 2.1 - Authenticated Stored Cross-Site Scripting (XSS)

Description

The plugin (v1.21) attempted to fix a Stored Cross-Site scripting issue in its "Redirect All 404 page to" settings, however the fix is insufficient, still allowing the issue to be triggered. This could allow high privilege users (even with the unfiltered_html disabled) to use malicious payloads in it, leading to a Stored XSS issue.

The vendor was notified on April 27th, 2021 about it via the WP plugins team. v2.1 fixing the issue was released on August 16th, 2021

Proof of Concept

Affects Plugins

Plugin icon
all-404-redirect-to-homepage
Fixed in 2.1

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
3.8 (low)

Miscellaneous

Original Researcher
WPScanTeam
Verified
Yes
WPVDB ID
bb88e2f4-dfb4-4475-8a15-0e46acbb7b49

Timeline

Publicly Published
2021-06-01 (about 4 years ago)
Added
2021-06-01 (about 4 years ago)
Last Updated
2021-08-17 (about 4 years ago)

Other

Published
Title
Published
2024-12-13
Title
The Permalinker < 1.9.0 - Contributor+ Stored XSS
Published
2024-10-29
Title
Widget or Sidebar Shortcode <= 0.6.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode
Published
2024-08-12
Title
Houzez < 3.2.5 - Reflected Cross-Site Scripting
Published
2025-01-18
Title
Tuaug4 <= 1.4 - Reflected Cross-Site Scripting
Published
2024-06-22
Title
WP Affiliate Platform < 6.5.1 - Reflected XSS via Registration Form