CVE-2024-5077 WP eMember < 10.6.6 - Stored XSS in Blacklist via CSRF

2024-07-1306:00:09

WPScan

github.com

cve-2024-5077

wp emember

stored xss

blacklist

csrf

wordpress plugin

csrf attack

admin

sanitization.

AI Score

5.9

Confidence

High

SSVC

Exploitation

poc

Automatable

Technical Impact

partial

JSON

The wp-eMember WordPress plugin before 10.6.6 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:tips_and_tricks_hq:wp_emember:*:*:*:*:*:*:*:*"
    ],
    "vendor": "tips_and_tricks_hq",
    "product": "wp_emember",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "10.6.6",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unknown"
  }
]