Poll, Survey & Quiz Maker Plugin by Opinion Stage Stored Cross-Site Scripting Vulnerability

A stored cross-site scripting vulnerability has been identified in the Poll, Survey & Quiz Maker Plugin by Opinion Stage, affecting WordPress versions prior to 19.6.25. This vulnerability allows unauthenticated attackers to inject arbitrary scripts into content, which are executed when a user views the affected page. The issue arises from inadequate input validation and output escaping, enabling the injection of malicious scripts that could exploit the user's browser context on the site.

Impact

Exploitation of this vulnerability allows for stored cross-site scripting, where injected scripts are executed in the context of the user viewing the page, potentially leading to cookie theft and other attacks.

Reproduction

To reproduce this vulnerability, send a request to 'wp-admin/admin-post.php' with the 'page' parameter set to 'opinionstage-content-login-callback-page'. Include the 'success', 'uid', 'token', 'email', 'fly_id', 'article_placement_id', and 'sidebar_placement_id' parameters. The 'fly_id', 'article_placement_id', and 'sidebar_placement_id' should be valid integers, while the other parameters can be filled with scripts, such as JavaScript alerts. When the page is accessed, the injected scripts will execute, demonstrating the cross-site scripting vulnerability.

Remediation

Users are advised to update the Poll, Survey & Quiz Maker Plugin by Opinion Stage to version 19.6.25 or later.