CVE-2017-20192
published 2024-10-16CVE-2017-20192: The Formidable Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters submitted during form entries like…
PriorityP180medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
1.00%
58.4th percentile
The Formidable Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters submitted during form entries like 'after_html' in versions before 2.05.03 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts that execute in a victim's browser.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| strategy11 | formidable_form_builder | < 2.05.03 | 2.05.03 |
Detection & IOCsextracted from sources · hover to see the quote
other<img src=x onerror=alert(document.domain)
- →HTTP response status code is 200 and Content-Type header contains 'text/html' and body contains the XSS payload string '<img src=x onerror=alert(document.domain)' — indicative of a successful stored XSS injection via Formidable Form Builder plugin parameters such as 'after_html'.
- ·Vulnerability affects Formidable Form Builder for WordPress versions before 2.05.03; unauthenticated attackers can inject via form entry parameters such as 'after_html'. Ensure detection covers unauthenticated POST requests to form submission endpoints. ↗
CVSS provenance
nvdv3.16.1MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
vulncheck8.3HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-25w9-jxhc-6r43: The Formidable Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters submitted during form entries li
ghsa_unreviewed·2024-10-16
CVE-2017-20192 [HIGH] CWE-79 GHSA-25w9-jxhc-6r43: The Formidable Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters submitted during form entries li
The Formidable Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters submitted during form entries like 'after_html' in versions before 2.05.03 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts that execute in a victim's browser.
VulnCheck
Formidable Form Builder plugin for WordPress after_html Stored Cross-Site Scripting Vulnerability
vulncheck·2017·CVSS 8.3
CVE-2017-20192 [HIGH] Formidable Form Builder plugin for WordPress after_html Stored Cross-Site Scripting Vulnerability
Formidable Form Builder plugin for WordPress after_html Stored Cross-Site Scripting Vulnerability
The Formidable Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters submitted during form entries like 'after_html' in versions before 2.05.03 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts that execute in a victim's browser.
Affected: strategy11 Formidable Form Builder plugin for WordPress
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/form
No detection rules found.
Nuclei
Formidable Forms < 2.05.02 - Cross-Site Scripting
nuclei·CVSS 6.1
CVE-2017-20192 [MEDIUM] Formidable Forms < 2.05.02 - Cross-Site Scripting
Formidable Forms
matchers:
- type: dsl
dsl:
- 'status_code == 200'
- 'contains(header, "text/html")'
- 'contains_all(body, "<img src=x onerror=alert(document.domain)")'
condition: and
# digest: 4b0a00483046022100b6b73739109913c45925c6a8fca2590b0e9fb0d762b105360a5a6c8531fda4dd022100961c499b17a9399eb8c61df5adf29980893fc4585ac442c0827a9f309b8b210e:922c64590222798bb761d5b6d8e72950
No writeups or analysis indexed.
2024-10-16
Published
Exploited in the wild