Unauthenticated AJAX Actions and Stored Cross-Site Scripting in WP Survey Plus WordPress Plugin

Unauthenticated AJAX Actions and Stored Cross-Site Scripting in WP Survey Plus WordPress Plugin

CVE-2021-24801 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

The WP Survey Plus WordPress plugin through 1.0 does not have any authorisation and CSRF checks in place in its AJAX actions, allowing any user to call them and add/edit/delete Surveys. Furthermore, due to the lack of sanitization in the Surveys' Title, this could also lead to Stored Cross-Site Scripting issues

Learn more about our Wordpress Pen Testing.