Executive Summary

This vulnerability is a Reflected Cross-Site Scripting (XSS) issue in the Custom Admin Menu WordPress plugin up to version 1.0.0. It occurs because the plugin does not properly sanitise and escape a parameter before displaying it back on the page. This allows an attacker to inject malicious scripts that can be executed in the context of high privilege users such as administrators.

Useful 0 Not Useful 0

Impact Analysis

The vulnerability can impact you by allowing attackers to execute malicious scripts in the browser of high privilege users like administrators. This can lead to unauthorized actions, theft of sensitive information, session hijacking, or other malicious activities performed with the privileges of the affected user.

Useful 0 Not Useful 0

Detection Guidance

This vulnerability can be detected by testing the vulnerable WordPress plugin Custom Admin Menu (version 1.0.0 and earlier) for reflected XSS by sending crafted URL parameters that include script payloads. For example, you can use curl or a browser to access a URL like: https://example.com/wp-admin/admin.php?page=adminmenu-settings&msg=%3Csvg%2Fonload%3Dalert%28document.domain%29%3E and observe if the JavaScript alert executes. This indicates the presence of the vulnerability. Automated scanners that test for reflected XSS on this plugin's parameters can also be used. [1]

Useful 0 Not Useful 0

Mitigation Strategies

Since no fix is currently available for this vulnerability, immediate mitigation steps include restricting access to the affected plugin's admin pages to trusted users only, avoiding clicking on suspicious links that include crafted parameters, and monitoring for any suspicious activity. Additionally, consider disabling or removing the Custom Admin Menu plugin until a patch is released to prevent exploitation. [1]

Useful 0 Not Useful 0