Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpvulndbSayandeep DuttaWPVDB-ID:D3FB4A2B-ED51-4654-B7C1-4B0F59CD1ECF
HistoryAug 02, 2023 - 12:00 a.m.

FormCraft < 1.2.7 - Admin+ Stored XSS

2023-08-0200:00:00
Sayandeep Dutta
wpscan.com
3
formcraft
xss
vulnerability
unescaped settings
high privilege user
stored cross-site scripting
plugin

5.1 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

14.0%

JSON

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).

PoC

There are two XSS issues: Example A: 1. Create a new form. 2. Go to settings and then to custom messages. 3. In form sent replace message sent with payload. Example B: 1. Go to add field and then add email. 2. In label change your email to payload 3. Now return to your submissions and click on the recent submission you made to see the XSS.

CPENameOperatorVersion
formcraft-form-buildereq1.2.7

Related

cve 1
prion 1
nvd 1
cvelist 1
wpexploit 1
wordfence 1
cve
cve
CVE-2023-3501
2023-08-30 15:15:09
prion
prion
Cross site scripting
2023-08-30 15:15:00
nvd
nvd
CVE-2023-3501
2023-08-30 15:15:09
cvelist
cvelist
CVE-2023-3501 FormCraft < 1.2.7 - Admin+ Stored XSS
2023-08-30 14:22:00
wpexploit
wpexploit
FormCraft < 1.2.7 - Admin+ Stored XSS
2023-08-02 00:00:00
wordfence
wordfence
Wordfence Intelligence Weekly WordPress Vulnerability Report (July 31, 2023 to August 6, 2023)
2023-08-10 12:42:18

5.1 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

14.0%

JSON
Related for WPVDB-ID:D3FB4A2B-ED51-4654-B7C1-4B0F59CD1ECF
cve1prion1nvd1cvelist1wpexploit1wordfence1