Lucene search
Wejdan AlomariWPVDB-ID:AFEF06F5-71A6-4372-9648-0DB59F9B254FHistoryMay 17, 2022 - 12:00 a.m.
WP Athletics <= 1.1.7 - Subscriber+ Stored Cross-Site Scripting
2022-05-1700:00:00
Wejdan Alomari
wpscan.com
9
0.001 Low
EPSS
Percentile
24.8%
The plugin does not sanitize parameters before storing them in the database, nor does it escape the values when outputting them back in the admin dashboard, leading to a Stored Cross-Site Scripting vulnerability.
PoC
- Log on to the site using a subscriber account. - On the page the shortcode is rendered, click on “Why not add your own race result?” - In the “Event Name” field, enter ">, and fill in & submit the rest of the form. - As an administrator, visit /wp-admin/admin.php?page=wp-athletics-manage-results
| CPE | Name | Operator | Version |
|---|---|---|---|
| wp-athletics | eq | * |
Related
patchstack
patchstack
wpexploit
wpexploit
WP Athletics <= 1.1.7 - Subscriber+ Stored Cross-Site Scripting
2022-05-17 00:00:00
prion
prion
Cross site scripting
2022-06-13 13:15:00
cve
cve
CVE-2022-1549
2022-06-13 13:15:11
cnvd
cnvd
WordPress WP Athletics plugin跨站脚本漏洞
2022-06-15 00:00:00
nvd
nvd
CVE-2022-1549
2022-06-13 13:15:11
cvelist
cvelist