WordPress Plugin Vulnerabilities

WOOCS < 1.3.7.5 - Reflected Cross-Site Scripting

Description

The plugin does not sanitise and escape the woocs_in_order_currency parameter of the woocs_get_products_price_html AJAX action (available to both unauthenticated and authenticated users) before outputting it back in the response, leading to a Reflected Cross-Site Scripting

Proof of Concept

Affects Plugins

Plugin icon
woocommerce-currency-switcher
Fixed in 1.3.7.5

References

CVE
CVE-2022-0234
URL
https://plugins.trac.wordpress.org/changeset/2659191

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
6.1 (medium)

Miscellaneous

Original Researcher
Krzysztof Zając
Submitter
Krzysztof Zając
Submitter website
https://kazet.cc/
Verified
Yes
WPVDB ID
fd568a1f-bd51-41bb-960d-f8573b84527b

Timeline

Publicly Published
2022-01-19 (about 3 years ago)
Added
2022-01-19 (about 3 years ago)
Last Updated
2022-04-08 (about 3 years ago)

Other

Published
Title
Published
2024-09-03
Title
Popup Box < 4.7.8 - Admin+ Stored XSS
Published
2024-09-30
Title
Geo Mashup < 1.13.14 - Authenticated (Contributor+) Stored Cross-Site Scripting via geo_mashup_visible_posts_list Shortcode
Published
2025-02-20
Title
Autoship Cloud for WooCommerce Subscription Products < 2.8.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2022-03-15
Title
GridKit Portfolio < 2.1.0 - Subscriber+ Stored Cross-Site Scripting
Published
2025-04-14
Title
Nomupay Payment Processing Gateway < 7.1.7 - Reflected Cross-Site Scripting