WordPress Plugin Vulnerabilities

CP Blocks < 1.0.15 - Admin+ Stored Cross-Site Scripting

Description

The plugin does not sanitise and escape its "License ID" settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html is disallowed.

Proof of Concept

Put the following payloads in the "License ID" setting of the plugin and save: "><script>alert(/XSS/)</script>

Affects Plugins

Plugin icon
cp-blocks
Fixed in 1.0.15

References

CVE
CVE-2022-0448

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
3.4 (low)

Miscellaneous

Original Researcher
Shweta Mahajan
Submitter
Shweta Mahajan
Verified
Yes
WPVDB ID
d4ff63ee-28e6-486e-9aa7-c878b97f707c

Timeline

Publicly Published
2022-02-02 (about 2 years ago)
Added
2022-02-02 (about 2 years ago)
Last Updated
2022-04-13 (about 2 years ago)

Other

Published
Title
Published
2023-03-02
Title
Cost Calculator <= 1.8 - Contributor+ Stored XSS
Published
2024-04-29
Title
Master Addons – Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor < 2.0.6.0 - Contributor+ Stored Cross-Site Scripting
Published
2023-11-13
Title
Star CloudPRNT for WooCommerce < 2.0.4 - Reflected XSS
Published
2022-12-14
Title
WP Table Reloaded <= 1.9.4 - Contributor+ Stored XSS
Published
2024-04-03
Title
ElementsKit Elementor addons < 3.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Countdown Widget