Lucene search
Apple502jWPEX-ID:F0915B66-0B99-4AEB-9FBA-759CAFAEB0CBHistoryFeb 01, 2022 - 12:00 a.m.
Cost Calculator < 1.6 - Contributor+ Stored Cross-Site Scripting
2022-02-0100:00:00
apple502j
70
0.001 Low
EPSS
Percentile
25.0%
The plugin allows users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks via the Description fields of a Cost Calculator > Price Settings (which gets injected on the edit page as well as any page that embeds the calculator using the shortcode), as well as the Text Preview field of a Project (injected on the edit project page)
Create a new "Cost Calculator" post, set the Price Settings > Description field to "><script>alert(/XSS/)</script>
and reload (or have an admin view the page). The XSS will also trigger when the related calculator shortcode (e.g [nd_cost_calculator id="806"]) is embed in a post/page
Create a new Project, set the Text Preview field to " style="animation-name:rotation;" onanimationend="alert(/XSS/)//
and reload (or have an admin view the page).Related
prion
prion
Cross site scripting
2022-03-07 09:15:00
nvd
nvd
CVE-2021-24821
2022-03-07 09:15:08
cve
cve
CVE-2021-24821
2022-03-07 09:15:08
cvelist
cvelist
cnvd
cnvd
WordPress Cost Calculator plugin跨站脚本漏洞
2022-03-09 00:00:00
wpvulndb
wpvulndb
Cost Calculator < 1.6 - Contributor+ Stored Cross-Site Scripting
2022-02-01 00:00:00
patchstack
patchstack