WP Last Modified Info < 1.6.6 – Authenticated Stored XSS | Plugin Vulnerabilities

Description

When saving a new campaign, a user with administrator capabilities can store scripts in the plugin's options. The code can then be executed on every page or post on the website.

Proof of Concept

An administrator can store scripts in the "Custom Message to Display on Posts" text input field. Reason for this was incorrect sanitizing and escaping the field's input. 

Video PoC: https://youtu.be/JfJX0TmxNS8

Affects Plugins

wp-last-modified-info

Fixed in 1.6.6

References

URL

https://jrjmulder.nl/plugins/wp-last-modified-info/

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

Miscellaneous

Original Researcher

Jeroen Mulder

Submitter

Jeroen Mulder

Submitter website

https://jrjmulder.nl

Verified

No

WPVDB ID

c766e6bf-6608-40bd-af4d-5ea254c8353c

Timeline

Publicly Published

2020-04-03 (about 6 years ago)

Added

2020-04-03 (about 6 years ago)

Last Updated

2020-04-04 (about 6 years ago)

Other

Published

Title

Published

2024-10-08

Title

Shortcode For Elementor Templates <= 1.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting

Published

2025-01-16

Title

Library Instruction Recorder <= 1.1.4 - Reflected Cross-Site Scripting

Published

2024-03-11

Title

WooCommerce Product Filter < 1.4.4 - Admin+ Stored XSS

Published

2021-11-29

Title

Asgaros Forums < 1.15.14 - Admin+ Stored Cross-Site Scripting

Published

2026-02-24

Title

Claue - Clean, Minimal Elementor WooCommerce <= 2.2.7 - Reflected Cross-Site Scripting