rexCrawler WordPress Plugin Reflected Cross-Site Scripting Vulnerability

A reflected cross-site scripting vulnerability has been identified in the rexCrawler plugin for WordPress, affecting all versions through 1.0.15. The issue arises from inadequate input sanitization and output escaping in the search-pattern tester page, specifically within the 'url' and 'regex' parameters. This vulnerability allows unauthenticated attackers to inject arbitrary web scripts that could be executed if an administrator is tricked into clicking a link. The problem is present in multi-site installations where unfiltered_html has been disabled.

Impact

Exploitation of this vulnerability allows for reflected cross-site scripting, where an attacker can inject malicious scripts that are executed in the context of the user.

Reproduction

To reproduce this vulnerability, navigate to the rexCrawler search-pattern tester page. Input a regular expression and a URL that points to a page you control. The injected script will execute if the crafted URL is clicked by an administrator.

Remediation

No known patch is available. It is recommended to uninstall the affected plugin and find a replacement.