WordPress GetYourGuide Ticketing 1.0.1 Cross Site Scripting

2022.09.20

Credit: Mariam Tariq

Risk: Low

Local: No

Remote: Yes

CVE: N/A

CWE: CWE-79

# *Exploit Title*: WordPress Plugin ‘GetYourGuide Ticketing’ - Stored
Cross-Site Scripting
# Date: 18-09-2022
# Exploit Author: Mariam Tariq - HunterSherlock
# Vendor Homepage:
https://wordpress.org/plugins/search/GetYourGuide+Ticketing/
# Version: 1.0.1
# Tested on: Firefox
# Contact me: mariamtariq404@gmail.com
# *Vulnerable code*:
``` <input type="text" name="partner_hash" value="<?php echo $partner_hash
?>"></input> ```
# *POC*:
1- Install the plugin ‘GetYourGuide Ticketing’ & activate it.
2- Navigate toward the GYG-Ticketing
3- Enter the XSS payload ` “><img src=x onerror=alert(1)>`
4- Go to link builder to verify the XSS pop-up.
#* POC image*:
https://imgur.com/amrDhIt

See this note in RAW Version

Vote for this issue:

100%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

WordPress GetYourGuide Ticketing 1.0.1 Cross Site Scripting

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.