Lucene search

K
wpexploitRenniepakWPEX-ID:05988EBB-7378-4A3A-9D2D-30F8F58FE9EF
HistoryJun 28, 2021 - 12:00 a.m.

W3 Total Cache < 2.1.4 - Reflected XSS in Extensions Page (Attribute Context)

2021-06-2800:00:00
renniepak
173

The plugin was vulnerable to a reflected Cross-Site Scripting (XSS) security vulnerability within the “extension” parameter in the Extensions dashboard, which is output in an attribute without being escaped first. This could allow an attacker, who can convince an authenticated admin into clicking a link, to run malicious JavaScript within the user’s web browser, which could lead to full site compromise.

https://example.com/wp-admin/admin.php?page=w3tc_extensions&extension=%22%3E%3Cscript%3Ealert%281%29%3C%2Fscript%3E
Related for WPEX-ID:05988EBB-7378-4A3A-9D2D-30F8F58FE9EF