Lucene search
Bob MatyasWPEX-ID:9F0A575F-862D-4F2E-8D25-82C6F58DD11AHistoryMay 24, 2024 - 12:00 a.m.
Pray For Me <= 1.0.4 - Unauthenticated Stored XSS
2024-05-2400:00:00
Bob Matyas
7
pray for me
unauthenticated
stored xss
plugin configuration
name fields
malicious script
exploit
admin view
Description The plugin does not sanitise and escape some parameters, which could unauthenticated visitors to perform Cross-Site Scripting attacks that trigger when an admin visits the Prayer Requests in the WP Admin
1. Configure the plugin to add the first name and last name fields to the form: https://example.com/wp-admin/admin.php?page=caruso_prayer_plugin_settings
2. Add the `[prayer_form]` shortcode to a post or page
3. As a unauthenticated user, fill out the form and enter `"><script>alert(1)</script>` in the "first name" and "last name" fields
4. As an admin, go to: https://example.com/wp-admin/admin.php?page=caruso_prayer_plugin to see the XSSRelated
cvelist
cvelist
CVE-2024-3966 Pray For Me <= 1.0.4 - Unauthenticated Stored XSS
2024-06-14 06:00:02
nvd
nvd
CVE-2024-3966
2024-06-14 06:15:12
cve
cve
CVE-2024-3966
2024-06-14 06:15:12
wpvulndb
wpvulndb
Pray For Me <= 1.0.4 - Unauthenticated Stored XSS
2024-05-24 00:00:00
vulnrichment
vulnrichment
CVE-2024-3966 Pray For Me <= 1.0.4 - Unauthenticated Stored XSS
2024-06-14 06:00:02
wordfence
wordfence
6.2 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Related for WPEX-ID:9F0A575F-862D-4F2E-8D25-82C6F58DD11A