Lucene search
Ilyase DehyWPVDB-ID:2D6ECD21-3DD4-423D-80E7-277C45080A9FHistoryJun 05, 2023 - 12:00 a.m.
CodeColorer < 0.10.1 – Admin+ Stored Cross-Site Scripting
2023-06-0500:00:00
Ilyase Dehy
wpscan.com
3
codecolorer
cross-site scripting
admin+
settings
privilege escalation
vulnerability
EPSS
0.001
Percentile
25.4%
The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
PoC
1. In the plugin’s settings, add the payload "> to the “Custom CSS Classes” field. 2. Save and when the page reloads, see XSS.
Related
cve
cve
CVE-2023-2795
2023-06-27 14:15:11
cvelist
cvelist
CVE-2023-2795 CodeColorer < 0.10.1 – Admin+ Stored Cross-Site Scripting
2023-06-27 13:17:25
nvd
nvd
CVE-2023-2795
2023-06-27 14:15:11
prion
prion
Cross site scripting
2023-06-27 14:15:00
wpexploit
wpexploit
CodeColorer < 0.10.1 – Admin+ Stored Cross-Site Scripting
2023-06-05 00:00:00
wordfence
wordfence