The plugin does not sanitise and escape its logs when outputting them in the admin dashboard, which could allow unauthenticated users to perform Stored Cross-Site Scripting attacks against admins
With the permalinks settings set to plain, as an unauthenticated user, open http://example.com/?bwpsitemap=<img src onerror=alert(/XSS/)> The XSS will be triggered in the log dashboard of the plugin https://example.com/wp-admin/admin.php?page=bwp_gxs_stats
CPE | Name | Operator | Version |
---|---|---|---|
bwp-google-xml-sitemaps | eq | * |