Lucene search
Bob MatyasWPVDB-ID:449E4DA8-BEAE-4FF6-9DDC-0E17781C0391HistoryJun 05, 2024 - 12:00 a.m.
Frontend Checklist <= 2.3.2 - Admin+ Stored XSS via Items
2024-06-0500:00:00
Bob Matyas
wpscan.com
2
frontend checklist
stored xss
admin
high privilege
cross-site scripting
unfiltered_html
multisite setup
shortcode
software
Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
PoC
1. Add a checklist and for an item, enter `` 2. Display the checklist via shortcode and view on the frontend to see the XSS
Related
cvelist
cvelist
CVE-2024-4959 Frontend Checklist <= 2.3.2 - Admin+ Stored XSS via Items
2024-06-26 06:00:03
vulnrichment
vulnrichment
CVE-2024-4959 Frontend Checklist <= 2.3.2 - Admin+ Stored XSS via Items
2024-06-26 06:00:03
nvd
nvd
CVE-2024-4959
2024-06-26 06:15:16
wpexploit
wpexploit
Frontend Checklist <= 2.3.2 - Admin+ Stored XSS via Items
2024-06-05 00:00:00
cve
cve
CVE-2024-4959
2024-06-26 06:15:16
5.5 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Related for WPVDB-ID:449E4DA8-BEAE-4FF6-9DDC-0E17781C0391