logoWordPressPluginsThemesAPISubmitContact
search-icon
logo
search-icon
WordPressPluginsThemesAPISubmitContactSecurity Scanner
Register

WP Google Map < 1.7.7 - Authenticated Stored Cross-Site Scripting (XSS)

Description

The plugin did not sanitise or escape the Map Title before outputting them in the page, leading to a Stored Cross-Site Scripting issue by high privilege users, even when the unfiltered_html capability is disallowed

Proof of Concept

Create a new map.
Add an XSS payload to the title.
Click "Show as map title".
Add the map to a page or post with the shortcode.

Affects Plugins

gmap-embed

Fixed in version 1.7.7

References

CVE

CVE-2021-24502

URL

https://drive.google.com/file/d/1CbBlsf0Vt1QLBTnSC-vod2UCMm_NnZ2p/view?usp=sharing

URL

https://plugins.trac.wordpress.org/changeset/2560064/gmap-embed

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

Miscellaneous

Original Researcher

Pratik Khalane

Submitter

Pratik Khalane

Verified

No

WPVDB ID

f95c3a48-5228-4047-9b92-de985741d157

Timeline

Publicly Published

2021-07-01 (about 3 months ago)

Added

2021-07-12 (about 3 months ago)

Last Updated

2021-08-10 (about 2 months ago)

Our Other Services

WPScan WordPress Security Plugin