WordPress Plugin Vulnerabilities

Steam Group Viewer <= 2.1 - Authenticated Stored Cross-Site Scripting (XSS)

Description

The plugin does not sanitise or escape its "Steam Group Address" settings before outputting it in the page, leading to an authenticated Stored Cross-Site Scripting issue

Proof of Concept

Enter the following payload in the "Steam Group Adrdess" setting of the plugin: "><script>alert(/XSS/)</script>

Affects Plugins

Plugin icon
steam-group-viewer
No known fix

References

CVE
CVE-2021-24476

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
5.5 (medium)

Miscellaneous

Original Researcher
kishore hariram
Submitter
kishore hariram
Submitter twitter
kishorehariram
Verified
Yes
WPVDB ID
d1885641-9547-4dd5-84be-ba4a160ee1f5

Timeline

Publicly Published
2021-06-28 (about 2 years ago)
Added
2021-06-28 (about 2 years ago)
Last Updated
2022-01-02 (about 2 years ago)

Other

Published
Title
Published
2022-06-22
Title
LearnPress < 4.1.6.7 - Reflected Cross-Site Scripting
Published
2020-10-29
Title
WordPress < 5.5.2 - Stored XSS in Post Slugs
Published
2017-02-10
Title
Woocommerce PDF Invoices Packing Slips < 2.0.13 - XSS
Published
2024-03-13
Title
Crisp < 0.45 - Authenticated (Subscriber+) Stored Cross-Site Scripting
Published
2024-04-16
Title
BA Book Everything < 1.6.9 - Authenticated (Administrator+) Stored Cross-Site Scripting