Plugin Info Card <= 2.3.6 - Authenticated XSS



Description
Authenticated XSS via wppic-list POST parameter in the wppic_widget_render() AJAX method (which is also lacking CSRF and authorisation checks, even in the fixed version)

Affects Plugin

fixed in version 2.3.7

References

URL https://plugins.trac.wordpress.org/changeset?reponame=&new=1105436%40wp-plugin-info-card&old=1084082%40wp-plugin-info-card

Classification

Type XSS
OWASP Top 10 A3: Cross-Site Scripting (XSS)
CWE CWE-79

Miscellaneous

Original Researcher Julio Potier
Views 1248
Verified No
WPVDB ID 9380

Timeline

Publicly Published 2015-03-04 (over 4 years ago)
Added 2019-06-23 (about 1 month ago)
Last Updated 2019-06-23 (about 1 month ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin