Lucene search
Erwan LR (WPScan)WPVDB-ID:C08E0F24-BD61-4E83-A555-363568CF0E6EHistoryDec 25, 2023 - 12:00 a.m.
Estatik Real Estate Plugin < 4.1.1 - Reflected XSS
2023-12-2500:00:00
Erwan LR (WPScan)
wpscan.com
5
estatik real estate plugin
reflected xss
cross-site scripting
admin privilege escalation
Description The plugin does not sanitise and escape various parameters and generated URLs before outputting them back in attributes, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin
PoC
Make a logged in admin open one of the URLs below (some require that at least one property exist in the plugin): https://example.com/wp-admin/edit.php?post_type=properties&“> https://example.com/wp-admin/edit.php?post_type=properties&order;=”> (other affected parameter: orderby) https://example.com/wp-admin/admin.php?page=es_demo&">
| CPE | Name | Operator | Version |
|---|---|---|---|
| eq | 4.1.1 |
Related
nvd
nvd
CVE-2023-6050
2024-01-15 16:15:12
cvelist
cvelist
CVE-2023-6050 Estatik Real Estate Plugin < 4.1.1 - Reflected XSS
2024-01-15 15:10:42
wpexploit
wpexploit
Estatik Real Estate Plugin < 4.1.1 - Reflected XSS
2023-12-25 00:00:00
cve
cve
CVE-2023-6050
2024-01-15 16:15:12
prion
prion
Cross site scripting
2024-01-15 16:15:00
5.8 Medium
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
17.1%
Related for WPVDB-ID:C08E0F24-BD61-4E83-A555-363568CF0E6E