Vulners
Lucene search
WordPress Plugin Domain Check 1.0.16 - Reflected Cross-Site Scripting (XSS) (Authenticated)
🗓️ 02 Feb 2022 00:00:00Reported by Ceylan BOZOĞULLARINDANType 
exploitdb🔗 www.exploit-db.com👁 248 Views
| Reporter | Title | Published | Views | Family All 15 |
|---|---|---|---|---|
 | WordPress Domain Check 1.0.16 Plugin - Reflected Cross-Site Scripting Vulnerability | 2 Feb 202200:00 | – | zdt |
 | Wordpress Plugin跨站脚本漏洞 | 1 Feb 202200:00 | – | cnnvd |
 | WordPress Domain Check plugin cross-site scripting vulnerability | 10 Feb 202200:00 | – | cnvd |
 | CVE-2021-24926 | 1 Feb 202212:21 | – | cve |
 | CVE-2021-24926 Domain Check < 1.0.17 - Reflected Cross-Site Scripting | 1 Feb 202212:21 | – | cvelist |
 | EUVD-2021-11838 | 7 Oct 202500:30 | – | euvd |
 | WordPress Domain Check <1.0.17 - Cross-Site Scripting | 6 Jun 202603:01 | – | nuclei |
 | CVE-2021-24926 | 1 Feb 202213:15 | – | nvd |
 | CVE-2021-24926 | 1 Feb 202213:15 | – | osv |
 | WordPress Domain Check 1.0.16 Cross Site Scripting | 2 Feb 202200:00 | – | packetstorm |
10
# Exploit Title: WordPress Plugin Domain Check 1.0.16 - Reflected Cross-Site Scripting (XSS) (Authenticated)
# Date: 30-10-2021
# Exploit Author: Ceylan Bozogullarindan
# Author Webpage: https://bozogullarindan.com
# Vendor Homepage: https://domaincheckplugin.com/
# Software Link: https://wordpress.org/plugins/domain-check/
# Version: 1.0.16
# Tested on: Linux
# CVE: CVE-2021-24926 (https://wpscan.com/vulnerability/8cc7cbbd-f74f-4f30-9483-573641fea733)
# Description:
Domain Check is a Wordpress plugin that allows you to see what domains and SSL certificates are coming up for expiration and to quickly locate the coupons, coupon codes, and deals from your favorite sites before renewing.
An authenticated user is able to inject arbitrary Javascript or HTML code to the "Domain Check Profile" interface available in settings page of the plugin, due to incorrect sanitization of user-supplied data and achieve a Reflected Cross-Site Scripting attack against the administrators. The plugin versions prior to 1.0.16 are affected by this vulnerability.
The details of the discovery are given below.
# Steps To Reproduce:
1. Just visit the following page after signing in the administrator panel: http://vulnerable-wordpress-website/wp-admin/admin.php?page=domain-check-profile&domain=hacked.foo<script>alert(1)</script>
2. The XSS will be triggered on the settings page.Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
02 Feb 2022 00:00Current
6.5Medium risk
Vulners AI Score6.5
CVSS 24.3
CVSS 3.16.1
EPSS0.08019