Add to Feedly <= 1.2.11 – Admin+ Stored XSS | CVE 2023-2470 | Plugin Vulnerabilities

Description

The plugin does not sanitize and escape its settings, allowing high-privilege users such as admin to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.

Proof of Concept

Install the plugin and insert the following payload in the field "Feed URL (http://...)":
1"<script>alert(1)</script>

Save the form and the payload will be executed.

Affects Plugins

No known fix

References

CVE

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

Fioravante Souza (WPScan)

Verified

Yes

WPVDB ID

de0adf26-8a0b-4b90-96d5-4bec6e770e04

Timeline

Publicly Published

2023-05-02 (about 2 years ago)

Added

2023-05-02 (about 2 years ago)

Last Updated

2023-05-02 (about 2 years ago)

Other

Published

Title

Published

2024-03-29

Title

SEO Title Tag <= 3.5.9 - Reflected Cross-Site Scripting

Published

2024-11-01

Title

BBP Core – Expand bbPress powered forums with useful features < 1.2.6 - Reflected Cross-Site Scripting via add_query_arg Parameter

Published

2024-06-05

Title

Frontend Checklist <= 2.3.2 - Admin+ Stored XSS

Published

2022-11-23

Title

Activello <= 1.4.4 - Reflected XSS

Published

2018-10-26

Title

Flow-Flow Social Stream <= 3.0.71 - Unauthenticated Cross-Site Scripting (XSS)