Lucene search
Jonatas Souza Villa FlorWPEX-ID:13910E52-5302-4252-8BEE-49DD1F0E180AHistoryAug 23, 2023 - 12:00 a.m.
Serial Codes Generator and Validator with WooCommerce Support < 2.4.15 - Admin+ Stored XSS
2023-08-2300:00:00
Jonatas Souza Villa Flor
23
woocommerce support
stored xss
serial codesforgery
0.0004 Low
EPSS
Percentile
14.2%
Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
There are two fields affected by a stored XSS vulnerability.
First:
1. Add new serial code
2. On the multiline field "Codes to store on the server" enter the payload: <td></td><script>alert(1)</script><td></td>
3. Press "Store codes"
4. Go back to the https://example.com/wp-admin/admin.php?page=sngmbh-serialcodes-validator and see the XSS happening.
Second:
1. Add new code list category
2. On the multiline field "Name" enter the payload: <td></td><script>alert(2)</script><td></td>
3. Go back to the plugin settings and see the XSS.Related
cvelist
cvelist
cve
cve
CVE-2023-4376
2023-09-19 20:15:09
prion
prion
Cross site scripting
2023-09-19 20:15:00
wpvulndb
wpvulndb
nvd
nvd
CVE-2023-4376
2023-09-19 20:15:09