Lucene search
Bob MatyasWPEX-ID:A9F47D11-47AC-4998-A82A-DC2F3B0DECDFHistoryMay 24, 2024 - 12:00 a.m.
WordPress Jitsi Shortcode <= 0.1 - Contributor+ Stored XSS via Shortcode
2024-05-2400:00:00
Bob Matyas
7
wordpress
jitsi
shortcode
contributor
stored xss
admin
exploit
vulnerable parameters
Description The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks
As a contributor, add a shortcode:
```
[jitsi width="700px" height=700px" username='test" onmouseover="alert(1);"' useremail='" style="background-color: pink; height: 500px;"']
```
View the post as an admin and move your mouse over the pink box to trigger the XSS.
Note: Other parameters are also vulnerable.Related
cve
cve
CVE-2024-3978
2024-06-14 06:15:12
nvd
nvd
CVE-2024-3978
2024-06-14 06:15:12
cvelist
cvelist
wpvulndb
wpvulndb
WordPress Jitsi Shortcode <= 0.1 - Contributor+ Stored XSS via Shortcode
2024-05-24 00:00:00
wordfence
wordfence
5.8 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Related for WPEX-ID:A9F47D11-47AC-4998-A82A-DC2F3B0DECDF