Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpvulndbJonatas Souza Villa FlorWPVDB-ID:13910E52-5302-4252-8BEE-49DD1F0E180A
HistoryAug 23, 2023 - 12:00 a.m.

Serial Codes Generator and Validator with WooCommerce Support < 2.4.15 - Admin+ Stored XSS

2023-08-2300:00:00
Jonatas Souza Villa Flor
wpscan.com
2
plugin
woocommerce
xss
vulnerability
sanitise
escape
settings
multisite
admin
serial codes

0.0004 Low

EPSS

Percentile

14.2%

JSON

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)

PoC

There are two fields affected by a stored XSS vulnerability. First: 1. Add new serial code 2. On the multiline field “Codes to store on the server” enter the payload: | 3. Press “Store codes” 4. Go back to the https://example.com/wp-admin/admin.php?page=sngmbh-serialcodes-validator and see the XSS happening. Second: 1. Add new code list category 2. On the multiline field “Name” enter the payload: | | 3. Go back to the plugin settings and see the XSS.

CPENameOperatorVersion
eq2.4.15

Related

cve 1
cvelist 1
wpexploit 1
prion 1
nvd 1
cve
cve
CVE-2023-4376
2023-09-19 20:15:09
cvelist
cvelist
CVE-2023-4376 Serial Codes Generator and Validator with WooCommerce Support < 2.4.15 - Admin+ Stored XSS
2023-09-19 19:06:03
wpexploit
wpexploit
Serial Codes Generator and Validator with WooCommerce Support < 2.4.15 - Admin+ Stored XSS
2023-08-23 00:00:00
prion
prion
Cross site scripting
2023-09-19 20:15:00
nvd
nvd
CVE-2023-4376
2023-09-19 20:15:09

0.0004 Low

EPSS

Percentile

14.2%

JSON
Related for WPVDB-ID:13910E52-5302-4252-8BEE-49DD1F0E180A
cve1cvelist1wpexploit1prion1nvd1