Lucene search
Miguel SantarenoWPEX-ID:FA4EEA26-0611-4FA8-A947-F78DDF46A56AHistoryJan 10, 2024 - 12:00 a.m.
EventON (Free < 2.2.7, Premium < 4.5.5) - Admin+ Stored Cross-Site Scripting
2024-01-1000:00:00
Miguel Santareno
57
eventon
stored cross-site scripting
vulnerability
admin+
custom metadata
EPSS
0
Percentile
14.0%
Description The plugin does not sanitize and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).
1. Go to the EventON Lite settings and create/activate a custom metadata field.
2. Then, insert the new custom metadata field.
3. Create a new Event itself and for the the Custom Meta Field value, insert the payload `" style=animation-name:rotation onanimationstart=alert(/XSS/)//`
4.The Stored XSS will be triggered when editing the event again.Related
wpvulndb
wpvulndb
EventON (Free < 2.2.7, Premium < 4.5.5) - Admin+ Stored Cross-Site Scripting
2024-01-10 00:00:00
cvelist
cvelist
nvd
nvd
CVE-2023-6005
2024-01-16 16:15:13
prion
prion
Cross site scripting
2024-01-16 16:15:00
cve
cve
CVE-2023-6005
2024-01-16 16:15:13