Slickr Flickr WordPress Plugin Stored Cross-Site Scripting Vulnerability

A stored cross-site scripting vulnerability has been identified in the Slickr Flickr WordPress plugin, affecting versions through 2.8.1. The issue arises because the plugin fails to properly sanitize and escape its settings. This flaw allows high-privilege users, such as administrators, to execute cross-site scripting attacks, even when the unfiltered_html capability is not permitted.

Impact

Exploitation of this vulnerability allows for stored cross-site scripting, where injected scripts are executed in the context of the user viewing the content.

Reproduction

To reproduce this vulnerability, intercept a request to the WordPress site using a tool like Burp Suite. In the 'flickr_id' parameter, insert a payload that includes a script tag, such as one that prompts for user input. Once the request is submitted, the injected script will be executed whenever the page is visited.