WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

Slideshow CK < 1.4.10 - Admin+ Stored Cross-Site Scripting

Description

The plugin does not sanitize and escape Slide's descriptions, which could allow high-privileged users such as admin to perform Cross-Site Scripting attacks when unfiltered_html is disallowed

Proof of Concept

Create/edit a Slideshow, add a Slide and put the following payload in the Description <img src onerror=alert(/XSS/)>

The XSS will be triggered in page/post where the Slideshow is embed

Affects Plugins

slideshow-ck
Fixed in version 1.4.10 - plugin closed

References

CVE
CVE-2022-1335

Classification

Type

XSS

OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Original Researcher

Fayçal CHENA

Submitter

Fayçal CHENA

Submitter website
https://fafachena.com/
Submitter twitter
faycal_chena
Verified

Yes

WPVDB ID
cfc80857-8674-478f-9604-7a8849e5b85e

Timeline

Publicly Published

2022-05-18 (about 3 months ago)

Added

2022-05-18 (about 3 months ago)

Last Updated

2022-05-18 (about 3 months ago)

Our Other Services

WPScan WordPress Security Plugin