Bg Bible References <= 3.8.14 – Reflected XSS | CVE 2022-4374 | Plugin Vulnerabilities

Description

The plugin does not sanitize and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting.

Proof of Concept

Steps to reproduce:

1. Install the vulnerable plugin (bg-biblie-references 3.18.4)
2. As an unauthenticated or authenticated user, visit the following URL which triggers an alert box:

http://127.0.0.1:7777/wp-admin/admin-ajax.php?action=bg_bibrefs&title=Gen&lang=en&type=x'><script>alert(`xss`)</script>

Affects Plugins

bg-biblie-references

No known fix

References

CVE

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

cydave

Submitter

cydave

Submitter website

https://cyllective.com/

Submitter twitter

Verified

Yes

WPVDB ID

bbaa808d-47b1-4c70-b157-f8297f627a07

Timeline

Publicly Published

2022-12-17 (about 1 years ago)

Added

2022-12-17 (about 1 years ago)

Last Updated

2022-12-17 (about 1 years ago)

Other

Published

Title

Published

2023-04-24

Title

Woocommerce Tip/Donation <= 1.2 - Shop Manager+ Stored XSS

Published

2012-01-01

Title

WP Live.php <= 1.2.1 - Cross-Site Scripting (XSS)

Published

2016-03-04

Title

Adminer < 1.4.4 - Multiple Cross-Site Scripting (XSS) Issue

Published

2023-06-19

Title

PrePost SEO <= 3.0 - Admin+ Stored Cross-Site Scripting

Published

2020-08-26

Title

FooGallery < 1.9.25 - Authenticated Cross-Site Scripting (XSS)