Lucene search
Vaishnav RajeevanWPEX-ID:DFDE5436-DD5C-4C70-A9C2-3CB85CC99C0AHistoryOct 16, 2023 - 12:00 a.m.
Responsive Pricing Table < 5.1.8 - Admin+ Stored Cross-Site Scriping
2023-10-1600:00:00
Vaishnav Rajeevan
30
pricing table
admin
cross-site scriping
xss
instant preview
exploit
Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
1. Create a New Pricing Table and Add a pricing plan.
2. Add the following malicious XSS payload in the "Short description" parameter.
XSS payload: `"><scri<script>pt>alert(1)</scri</script>pt>`
3. Save the Pricing table and click the Instant preview button to see the XSS.Related
wpvulndb
wpvulndb
Responsive Pricing Table < 5.1.8 - Admin+ Stored Cross-Site Scriping
2023-10-16 00:00:00
cvelist
cvelist
nvd
nvd
CVE-2023-4810
2023-11-06 21:15:08
cve
cve
CVE-2023-4810
2023-11-06 21:15:08
prion
prion
Cross site scripting
2023-11-06 21:15:00
wordfence
wordfence
5.5 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
10.5%
Related for WPEX-ID:DFDE5436-DD5C-4C70-A9C2-3CB85CC99C0A