PT-2022-13033 · WordPress · Themify Portfolio Post

Krzysztof Zając

Published

2022-02-14

Updated

2022-02-19

CVE-2022-0200

CVSS v3.1

5.4

Medium

Vector

AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Themify Portfolio Post WordPress plugin versions prior to 1.1.7

Description The issue arises from the lack of sanitization and escaping of the num of pages parameter in the response of the "themify create popup page pagination" AJAX action. This action is available to any authenticated user, leading to a Reflected Cross-Site Scripting issue.

Recommendations For versions prior to 1.1.7, update to version 1.1.7 or later to resolve the issue. As a temporary workaround, consider restricting access to the "themify create popup page pagination" AJAX action to minimize the risk of exploitation. Avoid using the num of pages parameter in the affected AJAX endpoint until the issue is resolved.

Exploit

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2022-0200

Affected Products

Themify Portfolio Post

PT-2022-13033 · WordPress · Themify Portfolio Post

CVE-2022-0200

Weakness Enumeration

Related Identifiers

Affected Products

References · 4