Lucene search
Bob MatyasWPEX-ID:02CA09F8-4080-4969-992D-0E6AFB29BC62HistoryMay 24, 2024 - 12:00 a.m.
Social Pixel <= 2.1 - Admin+ Stored XSS
2024-05-2400:00:00
Bob Matyas
8
social pixel
version 2.1
admin+ role
stored xss
facebook identificador
options-general.php
xss exploit
Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
1. Go to: https://example.com/wp-admin/options-general.php?page=social-pixel
2. Under "Facebook" add the payload `'); alert(2); console.log('blah` for the "Identificador".
3. Click the checkbox next to "ActivaciΓ³n"
4. Save the settings and view the site to see the XSSRelated
wpvulndb
wpvulndb
Social Pixel <= 2.1 - Admin+ Stored XSS
2024-05-24 00:00:00
nvd
nvd
CVE-2024-4005
2024-06-14 06:15:12
cvelist
cvelist
CVE-2024-4005 Social Pixel <= 2.1 - Admin+ Stored XSS
2024-06-14 06:00:04
vulnrichment
vulnrichment
CVE-2024-4005 Social Pixel <= 2.1 - Admin+ Stored XSS
2024-06-14 06:00:04
cve
cve
CVE-2024-4005
2024-06-14 06:15:12
wordfence
wordfence
5.6 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Related for WPEX-ID:02CA09F8-4080-4969-992D-0E6AFB29BC62