WordPress Plugin Vulnerabilities

Easy Smooth Scroll Links < 2.23.1 - Admin+ Stored Cross-Site Scripting

Description

The plugin does not sanitise and escape its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed

Proof of Concept

Put the following payload in any text field settings of the plugin (for example Scroll Speed) and save: "><script>alert(/XSS/)</script>

Affects Plugins

easy-smooth-scroll-links

Fixed in version 2.23.1

References

CVE

CVE-2022-0728

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

Miscellaneous

Original Researcher

Park won seok

Submitter

Park won seok

Submitter website

https://xxls-scty.tistory.com/

Submitter twitter

xxls_Scty

Verified

Yes

WPVDB ID

c6d3d308-4bf1-493f-86e9-dd623526e3c6

Timeline

Publicly Published

2022-03-21 (about 4 months ago)

Added

2022-03-21 (about 4 months ago)

Last Updated

2022-04-17 (about 3 months ago)

Our Other Services

WPScan WordPress Security Plugin