Persistent XSS Vulnerability in Events Manager Extended Plugin

vendor:

Events Manager Extended Plugin

by:

Craw

8,8

CVSS

HIGH

Persistent XSS

CWE

Product Name: Events Manager Extended Plugin

Affected Version From: 3.1.2

Affected Version To: 3.1.2

Patch Exists: NO

Related CWE: N/A

CPE: a:wordpress:events_manager_extended:3.1.2

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2020

Persistent XSS Vulnerability in Events Manager Extended Plugin

If a user is allowed to leave a comment or book an event, they can inject Javascript Code in their comment or in the fields [Name], [Email], [Phonenumber], [Comment]. The code will be displayed below the event or in the Wordpress Backend.

Mitigation:

Ensure that user input is properly sanitized and validated before being displayed.

Source

Exploit-DB raw data:

# Author: Craw
# Email: craw@element7.eu             
# Software Link: http://wordpress.org/extend/plugins/events-manager-extended/
# Version: 3.1.2
# Category: webapplications
 
=======================================================
 
 
[+] ExploiT [1] : If you are allowed to leave a comment:
	
	Persistent XSS Vulnerability: You can inject Javascript Code in your comment.
	The Code will be displayed below the event.

	
[+] ExploiT [2] : If you are allowed to book an event:
   
   Persistent XSS Vulnerability: You can inject Javascript Code in [Name] ,  [Email] , [Phonenumber] , [Comment]
   The Code will be displayed in the Wordpress Backend -> http://www.site.com/wp-admin/admin.php?page=events-manager-people
   

=======================================================
Greetz @ LUXEMBOURG
=======================================================