Lucene search
Vinay Varma MudunuriWPVDB-ID:7548C1FB-77B5-4290-A297-35820EDFE0F8HistoryAug 01, 2022 - 12:00 a.m.
Student Result or Employee Database < 1.7.5 - Stored Cross Site Scripting via CSRF
2022-08-0100:00:00
Vinay Varma Mudunuri
wpscan.com
6
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
The plugin does not have CSRF in its AJAX actions, allowing attackers to make logged in user with a role as low as contributor to add/edit and delete students via CSRF attacks. Furthermore, due to the lack of sanitisation and escaping, it could also lead to Stored Cross-Site scripting
PoC
| CPE | Name | Operator | Version |
|---|---|---|---|
| simple-student-result | lt | 1.7.5 |
Related
prion
prion
Cross site scripting
2022-08-22 15:15:00
cve
cve
CVE-2022-2312
2022-08-22 15:15:00
wpexploit
wpexploit
patchstack
patchstack
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Related for WPVDB-ID:7548C1FB-77B5-4290-A297-35820EDFE0F8