W3 Total Cache < 2.1.5 - Reflected XSS in Extensions Page (JS Context)
CVE-2021-24452

6.1MEDIUM

Key Information:

Vendor: Wordpress
Status: W3 Total Cache
Vendor: CVE Published:; 19 July 2021

Summary

The W3 Total Cache WordPress plugin before 2.1.5 was affected by a reflected Cross-Site Scripting (XSS) issue within the "extension" parameter in the Extensions dashboard, when the 'Anonymously track usage to improve product quality' setting is enabled, as the parameter is output in a JavaScript context without proper escaping. This could allow an attacker, who can convince an authenticated admin into clicking a link, to run malicious JavaScript within the user's web browser, which could lead to full site compromise.

Affected Version(s)

W3 Total Cache 2.1.5

References

https://wpscan.com/vulnerability/3e855e09-056f-45b5-89a9-...

x_refsource_CONFIRM

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Jul 19, 2021
Vulnerability Reserved
Jan 14, 2021

Credit

renniepak