Wordpress Plugin WOOF Products Filter for WooCommerce 1.2.3 - Persistent Cross-Site Scripting

vendor:

WooCommerce Products Filter

by:

Shahab.ra.9

8.8

CVSS

HIGH

Persistent Cross-Site Scripting

CWE

Product Name: WooCommerce Products Filter

Affected Version From: 1.2.3

Affected Version To: 1.2.3

Patch Exists: Yes

Related CWE: N/A

CPE: a:products-filter:woocommerce_products_filter:1.2.3

Metasploit: N/A

Other Scripts: N/A

Platforms Tested: Windows 10

2020

WordPress Plugin WOOF Products Filter for WooCommerce 1.2.3 – Persistent Cross-Site Scripting

A vulnerability in the Wordpress Plugin WOOF Products Filter for WooCommerce 1.2.3 allows an attacker to inject malicious JavaScript code into the application. This code can be executed when a user visits the affected page. The attacker can use this vulnerability to steal user data, hijack user sessions, and perform other malicious activities.

Mitigation:

To mitigate this vulnerability, users should ensure that all plugins are up to date and that any vulnerable plugins are removed from the system.

Source

Exploit-DB raw data:

# Exploit Title: Wordpress Plugin WOOF Products Filter for WooCommerce 1.2.3 - Persistent Cross-Site Scripting
# Date: 2020-02-15
# Exploit Author: Shahab.ra.9
# Vendor Homepage: https://products-filter.com/
# Software Link: https://wordpress.org/plugins/woocommerce-products-filter/
# Version: 1.2.3
# Tested on: windows 10
# WOOF - Products Filter for WooCommerce

Exploit:
http://target/wp-admin/admin.php?page=wc-settings&tab=woof

now in tab "design" -> then enter (xss code) in the (textfields) front side
->(Text for block toggle ,Text for block toggle , Custom front css styles
file link).
then click on button "save changes".
then refresh page ,now you see the execution of xss code ,then refersh
frontend page site -> "http://target/shop/ " or frontend pages used this
plugin the execution of xss code.

Demo Poc:

http://target/wp-admin/admin.php?page=wc-settings&tab=woof

now in tab "design" -> then enter ( ";</script><img src=1
onerror="alert(`xss store bug -> shahab.ra.9`);"><script>var1="1 ) in the
(textfields) front side ->(Text for block toggle ,Text for block toggle and
Custom front css styles file link).
then click on button "save changes".