Lucene search

K
wpexploitMansi SinghWPEX-ID:2BDE2030-2DFE-4DD3-AFC1-36F7031A91EA
HistoryNov 29, 2021 - 12:00 a.m.

Typebot < 1.4.3 - Admin+ Stored Cross Site Scripting

2021-11-2900:00:00
Mansi Singh
38

0.001 Low

EPSS

Percentile

24.8%

The plugin does not sanitise and escape the Publish ID setting, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.

Put the following payload in the 'Publish ID or Full URL" setting and save: "><img src=x onerror=confirm(/XSS/)>

0.001 Low

EPSS

Percentile

24.8%

Related for WPEX-ID:2BDE2030-2DFE-4DD3-AFC1-36F7031A91EA