Lucene search
Asif Nawaz MinhasWPEX-ID:913D7E78-23F6-4B0D-ACA3-17051A2DC649HistorySep 19, 2022 - 12:00 a.m.
Social Rocket < 1.3.3 - Admin+ Stored Cross-Site Scripting
2022-09-1900:00:00
Asif Nawaz Minhas
88
wordpress
administrator
plugin
xss
vulnerability
EPSS
0.001
Percentile
24.8%
The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
Logged in the backend of Wordpress as Administrator
1. Installed the plugin named: Social Rocket – Social Sharing Plugin
2. Activated the plugin.
3. On the left colum click now on Social Rocket > Floating Buttons.
4. Click now on Activate Networks and select Twitter as a social icon.
5. Hover now over the button Advanced, for this social button.
6. In the button Text use the following payload:
"><svg onload=alert(/XSSTEST/)>
7. Then Click on Done
8. Now click on the far right button Save.
9. And you will see the stored XSS vulnerability popping up.Related
cnvd
cnvd
WordPress Social Rocke Cross-Site Scripting Vulnerability
2022-10-12 00:00:00
patchstack
patchstack
wpvulndb
wpvulndb
Social Rocket < 1.3.3 - Admin+ Stored Cross-Site Scripting
2022-09-19 00:00:00
prion
prion
Cross site scripting
2022-10-10 21:15:00
nvd
nvd
CVE-2022-3136
2022-10-10 21:15:11
cve
cve
CVE-2022-3136
2022-10-10 21:15:11
cvelist
cvelist
CVE-2022-3136 Social Rocket < 1.3.3 - Admin+ Stored Cross-Site Scripting
2022-10-10 00:00:00