Lucene search
Bob MatyasWPVDB-ID:5717D729-C24B-4415-BB99-FCDD259328C4HistoryJun 19, 2023 - 12:00 a.m.
URL Shortify < 1.7.0 - Admin+ Cross Site Scripting
2023-06-1900:00:00
Bob Matyas
wpscan.com
1
url shortify plugin
version 1.7.0
admin privilege
cross-site scripting
stored xss
unfiltered html
settings
links
vulnerability
poc
multi-site setup
0.001 Low
EPSS
Percentile
19.5%
The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
PoC
1. Navigate to “URL Shortify > Settings > Links” 2. Add "> to the “Link Prefix” and save. 3. Go to “Links > Add New” to see the XSS.
| CPE | Name | Operator | Version |
|---|---|---|---|
| url-shortify | lt | 1.7.0 |
Related
cve
cve
CVE-2023-3129
2023-07-10 16:15:55
nvd
nvd
CVE-2023-3129
2023-07-10 16:15:55
prion
prion
Cross site scripting
2023-07-10 16:15:00
wpexploit
wpexploit
URL Shortify < 1.7.0 - Admin+ Cross Site Scripting
2023-06-19 00:00:00
cvelist
cvelist
CVE-2023-3129 URL Shortify < 1.7.0 - Admin+ Cross Site Scripting
2023-07-10 12:40:04