Vulnerability Description
WP Plugin Rednumber Admin Menu v1.1 and lower does not sanitize the value of the "role" GET parameter before echoing it back out to the user. This results in a reflected XSS vulnerability that attackers can exploit with a specially crafted URL.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Admin Menu Project | Admin Menu | <= 1.1 |
Related Weaknesses (CWE)
References
- https://wordpress.org/plugins/admin-menu/Release NotesThird Party Advisory
- https://zeroaptitude.com/zerodetail/wordpress-plugin-bug-hunting-part-1/ExploitThird Party AdvisoryURL Repurposed
- https://wordpress.org/plugins/admin-menu/Release NotesThird Party Advisory
- https://zeroaptitude.com/zerodetail/wordpress-plugin-bug-hunting-part-1/ExploitThird Party AdvisoryURL Repurposed
FAQ
What is CVE-2020-24316?
CVE-2020-24316 is a vulnerability with a CVSS score of 6.1 (MEDIUM). WP Plugin Rednumber Admin Menu v1.1 and lower does not sanitize the value of the "role" GET parameter before echoing it back out to the user. This results in a reflected XSS vulnerability that attacke...
How severe is CVE-2020-24316?
CVE-2020-24316 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-24316?
Check the references section above for vendor advisories and patch information. Affected products include: Admin Menu Project Admin Menu.