Smush < 3.9.9 - Admin+ Reflected Cross-Site Scripting
CVE-2022-1009

6.1MEDIUM

Key Information:

Vendor

Wordpress
Status
Smush – Lazy Load Images, Optimize & Compress Images
Vendor
CVE Published:
30 May 2022

What is CVE-2022-1009?

The Smush WordPress plugin before 3.9.9 does not sanitise and escape a configuration parameter before outputting it back in an admin page when uploading a malicious preset configuration, leading to a Reflected Cross-Site Scripting. For the attack to be successful, an attacker would need an admin to upload a malicious configuration file

Affected Version(s)

Smush – Lazy Load Images, Optimize & Compress Images 3.9.9

References

https://wpscan.com/vulnerability/bb5af08f-bb19-46a1-a7ac-...
x_refsource_MISC

CVSS V3.1

Score:
6.1
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Taurus Omar
JSON
.
CVE-2022-1009 : Smush < 3.9.9 - Admin+ Reflected Cross-Site Scripting