Easy Smooth Scroll Links < 2.23.1 – Admin+ Stored Cross-Site Scripting | CVE 2022-0728

Description

The plugin does not sanitise and escape its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed

Proof of Concept

Put the following payload in any text field settings of the plugin (for example Scroll Speed) and save: "><script>alert(/XSS/)</script>

Affects Plugins

easy-smooth-scroll-links

Fixed in 2.23.1

References

CVE

CVE-2022-0728

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

CVSS

3.4 (low)

Miscellaneous

Original Researcher

Park won seok

Submitter

Park won seok

Submitter website

https://xxls-scty.tistory.com/

Submitter twitter

xxls_Scty

Verified

Yes

WPVDB ID

c6d3d308-4bf1-493f-86e9-dd623526e3c6

Timeline

Publicly Published

2022-03-21 (about 3 years ago)

Added

2022-03-21 (about 3 years ago)

Last Updated

2022-04-17 (about 3 years ago)

Other

Published

Title

Published

2023-06-13

Title

Booking and Rental Manager < 1.2.2 - Admin+ Stored XSS

Published

2021-08-17

Title

Icegram < 2.0.3 - Admin+ Stored Cross-Site Scripting

Published

2023-04-21

Title

Dave's WordPress Live Search <= 4.8.1 - Admin+ Stored XSS

Published

2025-06-06

Title

Responsive Lightbox & Gallery < 2.5.2 - Contributor+ Stored XSS

Published

2025-01-07

Title

Timeline Pro < 1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via [placeholder]