Lucene search
Asif Nawaz MinhasWPVDB-ID:CD2FD6CD-A839-4DE8-AF28-B5134873C40EHistoryOct 10, 2022 - 12:00 a.m.
WP Contact Slider < 2.4.8 - Admin+ Stored Cross-Site Scripting
2022-10-1000:00:00
Asif Nawaz Minhas
wpscan.com
7
wordpress
contact slider
cross-site scripting
admin
unfiltered html
vulnerability
0.001 Low
EPSS
Percentile
24.8%
The plugin does not sanitize and escape its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
PoC
Create/edit a Contact slider and put the payload below in the “Text to display” option:
‘;alert(String.fromCharCode(88,83,83))//’;alert(String.fromCharCode(88,83,83))//“;alert(String.fromCharCode(88,83,83))//”;alert(String.fromCharCode(88,83,83))//–>alert(String.fromCharCode(88,83,83))
| CPE | Name | Operator | Version |
|---|---|---|---|
| wp-contact-slider | lt | 2.4.8 |
Related
patchstack
patchstack
cve
cve
CVE-2022-3237
2022-10-31 16:15:10
prion
prion
Cross site scripting
2022-10-31 16:15:00
cvelist
cvelist
CVE-2022-3237 WP Contact Slider < 2.4.8 - Admin+ Stored Cross-Site Scripting
2022-10-31 00:00:00
nvd
nvd
CVE-2022-3237
2022-10-31 16:15:10
wpexploit
wpexploit
WP Contact Slider < 2.4.8 - Admin+ Stored Cross-Site Scripting
2022-10-10 00:00:00