Lucene search

K
wpexploitAkash Rajendra PatilWPEX-ID:A31321FE-ADC6-4480-A220-35AEDCA52B8B
HistoryJun 30, 2021 - 12:00 a.m.

TaxoPress < 3.0.7.2 - Authenticated Stored Cross-Site Scripting (XSS)

2021-06-3000:00:00
Akash Rajendra Patil
335

0.001 Low

EPSS

Percentile

41.0%

The plugin does not sanitise its Taxonomy description field, allowing high privilege users to set JavaScript payload in them even when the unfiltered_html capability is disallowed, leading to an authenticated Stored Cross-Site Scripting issue.

Add or edit a Taximony (/wp-admin/admin.php?page=st_taxonomiesthe) with the following description: "><img src onerror=alert(/XSS/)>

Then view the Taxonomies table to trigger the XSS

0.001 Low

EPSS

Percentile

41.0%

Related for WPEX-ID:A31321FE-ADC6-4480-A220-35AEDCA52B8B