WordPress Plugin Vulnerabilities

Nifty Newsletters <= 4.0.23 - CSRF to Stored XSS

Description

The plugin is vulnerable to Cross-Site Request Forgery via the sola_nl_wp_head function found in the ~/sola-newsletters.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 4.0.23

Affects Plugins

Plugin icon
sola-newsletters
No known fix

References

CVE
CVE-2021-34634
URL
https://www.wordfence.com/vulnerability-advisories/#CVE-2021-34634

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
8.8 (high)

Miscellaneous

Original Researcher
Kohei Hino
Verified
Yes
WPVDB ID
c03c7a9f-1ae9-443a-a905-0efd41e54ebe

Timeline

Publicly Published
2021-07-30 (about 4 years ago)
Added
2021-08-01 (about 4 years ago)
Last Updated
2021-08-10 (about 4 years ago)

Other

Published
Title
Published
2024-06-05
Title
Rotating Tweets (Twitter widget and shortcode) <= 1.9.10 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode
Published
2024-04-05
Title
FooGallery < 2.4.15 - Authenticated (Author+) Stored Cross-Site Scripting via Image Attachment Fields
Published
2024-12-19
Title
Financial Calculator <= 2.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2024-10-14
Title
WooCommerce < 9.1.0 - Unauthenticated HTML Injection
Published
2024-07-15
Title
WP eMember <= v10.7.0 - Stored XSS via CSRF