Plugin for Google Reviews < 3.2 – Contributor+ Stored Cross-Site Scripting via shortcode | CVE 2023-6884 | Plugin Vulnerabilities

Description

The plugin is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode in all versions up to, and including, 3.1 due to insufficient input sanitization and output escaping on the 'place_id' attribute. This makes it possible for authenticated attackers with contributor-level and above permissions to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

Affects Plugins

widget-google-reviews

Fixed in 3.2

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/a8971d54-b54e-4e62-9db2-fa87d2564599

Classification

Type

CROSS FRAME SCRIPTING

OWASP top 10

CWE

CVSS

Miscellaneous

Original Researcher

Akbar Kustirama

Verified

No

WPVDB ID

f4bb5717-5381-42bf-838b-0ec9dea1d23f

Timeline

Publicly Published

2024-01-12 (about 2 years ago)

Added

2024-01-12 (about 2 years ago)

Last Updated

2024-01-12 (about 2 years ago)

Other

Published

Title

Published

2026-02-06

Title

Bold Builder <= 5.5.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via bt_bb_tabs Shortcode

Published

2024-04-04

Title

Watu Quiz < 3.4.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting

Published

2024-02-28

Title

Custom Field Suite < 2.6.5 - Authenticated (Admin+) Stored Cross-Site Scripting

Published

2024-05-01

Title

Follow Us Badges < 3.1.11 - Authenticated (Contributor+) Stored Cross-Site Scripting via wpsite_follow_us_badges Shortcode

Published

2024-03-27

Title

GamiPress – The #1 gamification plugin to reward points, achievements, badges & ranks in WordPress < 6.9.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode