School Management < 57.0 - CSRF and Stored XSS



Description
CSRF and Stored XSS (Cross Site Scripting)

Edit (WPScanTeam):
June 17th - Issue Reported to Envato
June 17th - Envato Support confirmed they are investigating the issue
June 28th - New version released, fixing the XSS but not the CSRF. Envato notified
July 5th - Demo fixed, new version to be released
July 11th - v57.0  released
Proof of Concept
Video POC : https://drive.google.com/file/d/138mNHBVRXViciHmLBpwPjE5HFgEa2DOK/view?usp=sharing

HTML_FILE : https://drive.google.com/file/d/1lIs8LdFWu9ra8hwEKoAKuU3DpXyuxx_H/view?usp=sharing

Affects Plugin

fixed in version 57.0

References

URL https://codecanyon.net/item/school-management-system-for-wordpress/11470032

Classification

Type MULTI

Miscellaneous

Original Researcher m0ns7er
Submitter Akash Labade
Submitter Website https://www.asfaleia.tech
Submitter Twitter akash_labade
Views 2237
Verified Yes
WPVDB ID 9450

Timeline

Publicly Published 2019-07-11 (2 months ago)
Added 2019-07-11 (2 months ago)
Last Updated 2019-08-02 (about 2 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin