Lucene search
Truoc PhanWPEX-ID:E95FF3C6-283B-4E5E-BEA0-1F1375DA08DAHistoryAug 17, 2023 - 12:00 a.m.
tagDiv Composer < 4.2 - Admin+ Stored XSS
2023-08-1700:00:00
Truoc Phan
58
tagdiv composer
newsmag
admin+
stored xss
custom css
exploit
EPSS
0.001
Percentile
24.0%
Description The plugin, used as a companion by the Newspaper and Newsmag themes from tagDiv, does not validate and escape some settings, which could allow users with Admin privileges to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
1. Visit Newsmag > Plugins and install and activate "tagDiv Composer"
2. Visit Newsmag > Theme panel > Custom Code
3. Enter the following in "Custom CSS" and click "Save Settings":
</style><img src onerror=alert('XSS')><style>
4. Visit the site frontend to see the XSS.Related
vulnrichment
vulnrichment
CVE-2023-3170 tagDiv Composer < 4.2 - Admin+ Stored XSS
2023-09-11 19:46:09
nvd
nvd
CVE-2023-3170
2023-09-11 20:15:09
prion
prion
Cross site scripting
2023-09-11 20:15:00
cvelist
cvelist
CVE-2023-3170 tagDiv Composer < 4.2 - Admin+ Stored XSS
2023-09-11 19:46:09
cve
cve
CVE-2023-3170
2023-09-11 20:15:09
wpvulndb
wpvulndb
tagDiv Composer < 4.2 - Admin+ Stored XSS
2023-08-17 00:00:00
wordfence
wordfence