Lucene search
Lana CodesWPEX-ID:D5EA8F7F-7D5A-4B2E-A070-A9AEF7CAC58AHistoryJan 05, 2023 - 12:00 a.m.
CC Child Pages < 1.43 - Contributor+ Stored XSS via Shortcode
2023-01-0500:00:00
Lana Codes
62
stored xss
contributor+
shortcode
EPSS
0.001
Percentile
25.5%
The plugin does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admins.
Exploit:
[child_pages link_target='" onmouseover="alert(1)" style="background:red;"']
Note: This should be added to a page and should be a parent page. So the page you add it to must be a child of it, as this lists the child pages.Related
nvd
nvd
CVE-2022-4776
2023-01-30 21:15:12
wpvulndb
wpvulndb
CC Child Pages < 1.43 - Contributor+ Stored XSS via Shortcode
2023-01-05 00:00:00
cvelist
cvelist
CVE-2022-4776 CC Child Pages < 1.43 - Contributor+ Stored XSS via Shortcode
2023-01-30 20:31:29
cve
cve
CVE-2022-4776
2023-01-30 21:15:12
prion
prion
Cross site scripting
2023-01-30 21:15:00