Lucene search
Marc MontpasWPEX-ID:3B45CC0B-7378-49F3-900E-D0E18CD4B878HistorySep 25, 2023 - 12:00 a.m.
PageLayer < 1.7.8 - Author+ Stored XSS
2023-09-2500:00:00
Marc Montpas
23
pagelayer
1.7.8
stored xss
author+ role
post draft
page builder
advanced tab
header
body
footer
exploit
0.0004 Low
EPSS
Percentile
14.0%
Description The plugin doesn’t prevent attackers with author privileges and higher from inserting malicious JavaScript inside a post’s header or footer code.
- As a user with Author+ capabilities, create a new post draft
- Save it, then edit it using the PageLayer page builder
- Navigate to the "Advanced" tab, and then the " Header, Body and Footer" section
- Enter `</textarea><script>alert(1);</script>` in the Header, Body and Footer code text areas, and save.
- Preview the resulting post should make the alert prompts go off.Related
cvelist
cvelist
CVE-2023-5087 PageLayer < 1.7.8 - Author+ Stored XSS
2023-10-16 19:38:57
nvd
nvd
CVE-2023-5087
2023-10-16 20:15:17
cve
cve
CVE-2023-5087
2023-10-16 20:15:17
prion
prion
Code injection
2023-10-16 20:15:00
wpvulndb
wpvulndb
PageLayer < 1.7.8 - Author+ Stored XSS
2023-09-25 00:00:00
openvas
openvas
WordPress PageLayer Plugin < 1.7.8 XSS Vulnerability
2023-10-17 00:00:00