WordPress Plugin Vulnerabilities

Random Banner < 4.1.6 - Admin+ Stored Cross-Site Scripting

Description

The plugin is vulnerable to Stored Cross-Site Scripting due to insufficient escaping via the category parameter found in the ~/include/models/model.php file which allowed attackers with administrative user access to inject arbitrary web scripts, in versions up to and including 4.1.4. This affects multi-site installations where unfiltered_html is disabled for administrators, and sites where unfiltered_html is disabled.

Affects Plugins

Plugin icon
random-banner
Fixed in 4.1.6

References

CVE
CVE-2022-0210
URL
https://www.wordfence.com/vulnerability-advisories/#CVE-2022-0210

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
3.4 (low)

Miscellaneous

Original Researcher
Big Tiger
Verified
Yes
WPVDB ID
f16b1ecd-1276-4f07-b9ea-a1f474a86c06

Timeline

Publicly Published
2022-01-14 (about 4 years ago)
Added
2022-01-14 (about 4 years ago)
Last Updated
2022-04-13 (about 4 years ago)

Other

Published
Title
Published
2025-02-24
Title
PiwigoPress <= 2.33 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2025-09-03
Title
PropertyHive < 2.1.6 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2024-10-31
Title
Reftagger Shortcode <= 1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2024-10-10
Title
Powerpress < 11.9.19 - Authenticated (Contributor+) Stored Cross-Site Scripting via skipto Shortcode
Published
2023-05-22
Title
WooCommerce Follow-Up Emails < 4.9.50 - Unauthenticated Reflected XSS