PT-2023-11873 · WordPress · Wp Desk Flexible Checkout Fields For Woocommerce
Jerome Bruandet
·
Published
2023-06-07
·
Updated
2026-03-12
·
CVE-2020-36731
CVSS v3.1
7.2
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Flexible Checkout Fields for WooCommerce plugin for WordPress versions up to and including 2.3.1
Description
The issue is caused by missing authorization checks on the
updateSettingsAction() function, which is called via an admin init hook, and missing sanitization and escaping on stored settings. This leads to Unauthenticated Arbitrary Plugin Settings update and Stored Cross-Site Scripting.Recommendations
For versions up to and including 2.3.1, update to a version that includes the necessary authorization checks and sanitization to prevent Unauthenticated Arbitrary Plugin Settings update and Stored Cross-Site Scripting.
As a temporary workaround, consider disabling the
updateSettingsAction() function until a patch is available.Exploit
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Wp Desk Flexible Checkout Fields For Woocommerce