CVE-2021-24610

TranslatePress < 2.0.9 - Authenticated Stored Cross-Site Scripting

EPSS 5.4%CWE-79

Vexday Risk Score

23Low

SSVC decision (CISA)

Attend

PoC available → attend closely

CVSS —EPSS 5.4%KEV nãoPoC públicaNuclei —Metasploit —Patch —

Lifecycle

27 Sep 2021Published on NVD

28 Sep 2021Public PoC

Recommendation: Plan a near-term fix — a public PoC already exists.

The TranslatePress WordPress plugin before 2.0.9 does not implement a proper sanitisation on the translated strings. The 'trp_sanitize_string' function only removes script tag with a regex, still allowing other HTML tags and attributes to execute javascript, which could lead to authenticated Stored Cross-Site Scripting issues.

Affected products

Unknown · Translate Multilingual sites – TranslatePress

public PoCs found — 2

cve_referencepacketstormsecurity.com/files/164306/WordPress-TranslatePress-2.0.8-Cross-Site-Scripting.htmlunverified exploitdbwww.exploit-db.com/exploits/50343unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://packetstormsecurity.com/files/164306/WordPress-TranslatePress-2.0.8-Cross-Site-Scripting.html https://wpscan.com/vulnerability/b87fcc2f-c2eb-4e23-9757-d1c590f26d3f