WordPress Plugin Vulnerabilities

WP User <= 7.0 - Admin+ Stored XSS

Description

The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)

Affects Plugins

Plugin icon
wp-user
No known fix

References

CVE
CVE-2022-4519

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
3.4 (low)

Miscellaneous

Original Researcher
Marco Wotschka
Verified
No
WPVDB ID
3117e603-7196-44a0-bca1-49ed5dddac76

Timeline

Publicly Published
2022-12-06 (about 1 years ago)
Added
2022-12-15 (about 1 years ago)
Last Updated
2022-12-15 (about 1 years ago)

Other

Published
Title
Published
2023-10-18
Title
Responsive Image Gallery, Gallery Album <= 2.0.3 - Unauthenticated Stored XSS
Published
2024-02-23
Title
Archivist – Custom Archive Templates < 1.7.6 - Reflected Cross-Site Scripting
Published
2024-04-22
Title
GeoDirectory – WordPress Business Directory Plugin, or Classified Directory < 2.3.49 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'gd_single_tabs' Shortcode
Published
2024-05-03
Title
Rank Math SEO with AI Best SEO Tools < 1.0.218 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2024-03-06
Title
Booster for WooCommerce < 7.1.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortocde