Easy Code Snippets - Reflected cross-site scripting (XSS)

Summary

Name	Easy Code Snippets 1.0. - Reflected cross-site scripting (XSS)
Code name	skims-62
Product	Easy Code Snippets
Affected versions	Version 1.0.
State	Private
Release date	2024-12-06

Vulnerability

Kind	Reflected cross-site scripting (XSS)
Rule	Reflected cross-site scripting (XSS)
Remote	No
CVSSv4 Vector	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:L/VA:L/SC:L/SI:L/SA:L/E:U
Exploit available	No
CVE ID(s)	cve-2020-2020

Description

Easy Code Snippets 1.0. was found to be vulnerable. The web application dynamically generates web content without validating the source of the potentially untrusted data in myapp/includes/admin/forms/class-wpcs-sn ippet-list.php.

Vulnerability

Skims by Fluid Attacks discovered a Reflected cross-site scripting (XSS) in Easy Code Snippets 1.0.. The following is the output of the tool:

Skims output

 362 | 'page']) && $_GET['page'] == 'ecsnippets-snippets' && $total_snippet >= '5' ) { 363 | = '<div class=""error settings-error"" id=""setting-error-""><p><strong>'.__( 'You can add maximun five snippets, to add more 364 | sage; 365 | 366 | l = add_query_arg( array( 367 | nippets-snippets', 368 | dd-new-snippet' 369 | 370 | echo esc_url($new_snippet_Url); ?>"" class=""page-title-action""> 371 | New Snippet', 'ecsnippets' ); ?> 372 | 373 | 374 | 375 | > 376 | en"" name=""page"" value=""<?php echo $_REQUEST['page'] ?>"" /> 377 | ets --> 378 | stTable->search_box( __( 'Search Snippets', 'ecsnippets' ), 'ecsnippets_ltable_search' ); ?> 379 | ender the completed list table --> 380 | stTable->display(); ?>
  381 |
  382 |
      ^ Col 19

Our security policy

We have reserved the ID cve-2020-2020 to refer to this issue from now on.

• https://fluidattacks.com/advisories/policy/

System Information

• Version: Easy Code Snippets

1.0.

Mitigation

There is currently no patch available for this vulnerability.

Credits

The vulnerability was discovered by Andres Roldan from Fluid Attacks' Offensive Team using Skims

Timeline