Login

Tag Archives: Reflected Cross-Site Scripting (XSS)

4 Jun 2021

Our First Check of the Security of ClassicPress Plugins Found a Minor Vulnerability

One way we help to improve the security of WordPress plugins, not just for our customers of our service, but for everyone using them, is our proactive monitoring of changes made to plugins in the Plugin Directory to try to catch serious vulnerabilities. We have now brought similar monitoring to the Plugin Directory for the WordPress fork ClassicPress. That directory includes both plugins developed for ClassicPress and some plugins directly from the WordPress Plugin Directory.

The structure of ClassicPress’ directory is different, so instead of checking over the changes being made as we can do with WordPress, we check over all the plugins we can download at regular intervals. At this point we can not process them all in an automated way because of a couple of issues with easily getting access to the download links (those might be in the process of being resolved), but we were able to check a significant number of them earlier this week and none of them had any code that was flagged. [Read more]

25 May 2021

Our Proactive Monitoring Caught a Reflected XSS Vulnerabilities in a WordPress Plugin With 400,000+ Installs

One way we help to improve the security of WordPress plugins, not just for our customers of our service, but for everyone using them, is our proactive monitoring of changes made to plugins in the Plugin Directory to try to catch serious vulnerabilities. Through that we caught a reflected cross-site scripting (XSS) vulnerabilities in the plugin ProfilePress, which has 400,000+ active installations.

The possibility of these vulnerabilities is also now flagged by our Plugin Security Checker due an improvement we made based on these vulnerabilities, so you can check plugins you use to see if they might have similar issues with that tool. The tool flags other possible security issues in the plugin, so we wouldn’t recommend using the plugin unless the security has more broadly been reviewed and corrected. [Read more]

11 Mar 2020

Vulneraiblity Details: Reflected Cross-Site Scripting (XSS) in YOP Poll

One of the changelog entries for a recent version of YOP Poll is “fixed XSS bug”. Looking at the changes made we found that refers to a fixed reflected cross-site scripting (XSS) vulnerability in code that runs on an admin page of the plugin. That possibly of that vulnerability would have been flagged by our Plugin Security Checker if the vulnerable versions of the plugin had been checked.

[Read more]

2 Mar 2020

Vulnerability Details: Reflected Cross-Site Scripting (XSS) in Easy Forms for Mailchimp

Recently a report of a cross-site scripting (XSS) vulnerability in the plugin Easy Forms for Mailchimp from Mehran Feizi was published on Packet Storm and then removed. While the report was not fully accurate, it did identify a reflected cross-site scripting (XSS) vulnerability in the plugin.

[Read more]

20 Feb 2020

Vulnerability Details: Reflected Cross-Site Scripting (XSS) in Popup Builder

While recent report of a claimed cross-site scripting (XSS) vulnerability in Popup Builder by Mehran Feizi, has a proof of concept that doesn’t work or to have even been tested, there is in fact a reflected XSS vulnerability that exists if the relevant code is accessed differently.

[Read more]

25 Nov 2019

Vulnerability Details: Reflected Cross-Site Scripting (XSS) in DeMomentSomTres Subscribe

The plugin DeMomentSomTres Subscribe was closed on the Plugin Directory on September 18 for “Licensing/Trademark Violation”. A new version of the plugin was submitted today with the changelog “Sanitize $_REQUEST”. Looking at the changes made we found that at least a reflected cross-site scripting (XSS) vulnerability was fixed.

[Read more]

19 Nov 2019

Vulnerability Details: Reflected Cross-Site Scripting (XSS) in AdRoll for WooCommerce Stores

The plugin AdRoll for WooCommerce Stores was closed on the Plugin Directory two days ago. Earlier today a new version of the plugin was submitted with the changelog “Security update”. Looking at the changes made in the new version we found that a reflected cross-site scripting (XSS) vulnerability, which has been at least partially fixed.

[Read more]

19 Sep 2019

Recently Closed WordPress Plugin with 100,000+ Installs Contains Reflected XSS Vulnerability

The plugin Click to Chat was closed on the WordPress Plugin Directory today. That is one of the 1,000 most popular plugins with 100,000+ installs, so we were alerted to its closure. While we were looking in to the plugin to see if there were any serious vulnerabilities we should be warning users of the plugin that also use our service, we found that it contains a reflected cross-site scripting (XSS) vulnerability.

In a reminder of the general insecurity of WordPress plugins that vulnerability appears unrelated to the cause of the closure, as there was a change made to the plugin since its closure which involved renaming the plugin from Click to Chat for WhatsApp. [Read more]