.. / CVE-2021-25016

Exploit for Chaty < 2.8.2 - Cross-Site Scripting (CVE-2021-25016)

Description:

The Chaty WordPress plugin before 2.8.3 and Chaty Pro WordPress plugin before 2.8.2 do not sanitise and escape the search parameter before outputting it back in the admin dashboard, leading to a Reflected Cross-Site Scripting.

Nuclei Template

View the template here CVE-2021-25016.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2021/CVE-2021-25016.yaml

References:

https://nvd.nist.gov/vuln/detail/CVE-2021-25016
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25016
https://wpscan.com/vulnerability/b5035987-6227-4fc6-bc45-1e8016e5c4c0

.. / CVE-2021-25016 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for Chaty < 2.8.2 - Cross-Site Scripting (CVE-2021-25016)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2021-25016