Lucene search
Dmitrii IgnatyevWPEX-ID:252DFC35-4C8C-4304-AA09-73DFE986B10DHistoryMar 12, 2024 - 12:00 a.m.
Page Builder Gutenberg Blocks < 3.1.7 - Contributor+ Stored XSS
2024-03-1200:00:00
Dmitrii Ignatyev
31
page builder
gutenberg blocks
stored xss
contributor+
icon block
link url field
exploit
Description The plugin does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks
Create/Edit a Post, add an "Icon" block and put the following payload in the "Link Settings > Link URL: " field: 123" onmouseover='alert(/XSS/)'
The XSS will be triggered when viewing/previewing the post and moving the mouse over the iconReferences
Related
cvelist
cvelist
wpvulndb
wpvulndb
Page Builder Gutenberg Blocks < 3.1.7 - Contributor+ Stored XSS
2024-03-12 00:00:00
cve
cve
CVE-2024-2369
2024-04-02 05:15:47
nvd
nvd
CVE-2024-2369
2024-04-02 05:15:47
wordfence
wordfence
5.9 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.0%
Related for WPEX-ID:252DFC35-4C8C-4304-AA09-73DFE986B10D