Cerber Limit Login Attempts <= 2.0.1.6 - Unauthenticated Stored XSS



Description
If the option "I'm behind a proxy" is enabled, the visitor IP is read from X-Forwarded-For header, stored & printed in the admin panel without any sanitization / validation.
Proof of Concept
Set the X-Forwarded-For header to <script>alert(1)</script>, and perform an incorrect login.

Affects Plugin

fixed in version 2.7

References

URL https://wordpress.org/plugins/wp-cerber/changelog/

Classification

Type XSS
OWASP Top 10 A7: Cross-Site Scripting (XSS)
CWE CWE-79

Miscellaneous

Submitter Gerard Arall
Submitter Website https://github.com/arall
Views 4983
Verified No
WPVDB ID 8430

Timeline

Publicly Published 2016-04-01 (over 3 years ago)
Added 2016-04-01 (over 3 years ago)
Last Updated 2016-04-01 (over 3 years ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin