WordPress Vulnerabilities

WordPress < 5.5.2 - Stored XSS in Post Slugs

Description

The release notes state:

"Thanks to Karim El Ouerghemmi from RIPS who disclosed a method to store XSS in post slugs."

Affects WordPress

5.5.1
Fixed in WordPress 5.5.2
5.5
Fixed in WordPress 5.5.2

References

CVE
CVE-2020-28038
URL
https://wordpress.org/news/2020/10/wordpress-5-5-2-security-and-maintenance-release/
URL
https://blog.wpscan.com/2020/10/30/wordpress-5.5.2-security-release.html

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
3.5 (low)

Miscellaneous

Original Researcher
Karim El Ouerghemmi from RIPS
Verified
No
WPVDB ID
990cf4ff-0084-4a5c-8fdb-db374ffcb5df

Timeline

Publicly Published
2020-10-29 (about 3 years ago)
Added
2020-10-29 (about 3 years ago)
Last Updated
2020-11-02 (about 3 years ago)

Other

Published
Title
Published
2024-05-06
Title
WPCS ( WordPress Custom Search ) <= 1.1 - Authenticated (Administrator+) Stored Cross-Site Scripting
Published
2024-03-11
Title
Essential Addons for Elementor < 5.9.10 - Contributor+ Stored Cross-Site Scripting via Data Table
Published
2019-04-16
Title
MailPoet < 3.23.2 - Reflected Cross-Site Scripting Issue
Published
2014-08-01
Title
Tweet Blender 4.0.1 - Unspecified XSS
Published
2014-08-01
Title
1-flash-gallery <= 1.9.0 - XSS in ZeroClipboard.swf