YOP Poll < 6.1.5 - Authenticated Stored XSS



Description
If you add a new poll, and place a malicious script in the question/answer fields and then press Preview, the script will run. The preview option is available for the editor & administrator role, which makes these roles vulnerable to XSS attacks. 
Proof of Concept
Place a "><script>alert('xss');</script> in the question box and save the post. After saving the post, press preview, and the plugin will show the alert.  

Affects Plugin

fixed in version 6.1.5

References

URL https://wiljeonline.com/vulnerabilities/yop-poll-plugin/

Classification

Type XSS
OWASP Top 10 A7: Cross-Site Scripting (XSS)
CWE CWE-79

Miscellaneous

Original Researcher Jeroen Mulder
Submitter Jeroen Mulder
Submitter Website https://wiljeonline.com/
Views 1257
Verified No
WPVDB ID 10189

Timeline

Publicly Published 2020-04-24 (about 1 month ago)
Added 2020-04-24 (about 1 month ago)
Last Updated 2020-04-25 (about 1 month ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin