WordPress Social Warfare Plugin Stored Cross-Site Scripting Vulnerability Allowing Remote Code Execution

A stored cross-site scripting vulnerability has been identified in the WordPress Social Warfare plugin, affecting versions prior to 3.5.3. The issue arises in the wp-admin/admin-post.php file, where the swp_url parameter is not properly sanitized. This flaw allows attackers to inject malicious JavaScript that is executed in the context of the user visiting the site, potentially leading to remote code execution.

Impact

Exploitation of this vulnerability allows for stored cross-site scripting, where injected scripts are executed in the context of the user.

Reproduction

To reproduce this vulnerability, send a request to wp-admin/admin-post.php with the swp_debug parameter set to load_options and include a crafted swp_url parameter that points to a malicious JavaScript payload. The injected script will be executed when the page is loaded by a user.

Remediation

Users are advised to update the Social Warfare plugin to version 3.5.3 or later.