CVE-2020-11727

Vulnerability

A reflected cross-site scripting (XSS) vulnerability exists in the AlgolPlus Advanced Order Export for WooCommerce plugin version 3.1.3 for WordPress. The issue is located in the view/settings-form.php file, where the woe_post_type parameter is not properly sanitized or escaped, allowing an attacker to inject arbitrary web script or HTML. [1][4]

Exploitation

An attacker can exploit this vulnerability by crafting a malicious URL containing the woe_post_type parameter with injected JavaScript or HTML. No prior authentication is required, as the vulnerable parameter is accessible to unauthenticated users. The victim must be tricked into clicking the crafted link, after which the injected script executes in the context of the victim's browser session. [1][4]

Impact

Successful exploitation allows the attacker to execute arbitrary JavaScript or HTML in the security context of the victim's WordPress admin session. This can lead to theft of session cookies, defacement, or other actions performed on behalf of the administrative user, compromising the integrity and confidentiality of the WordPress installation. [4]

Mitigation

The vulnerability was fixed in version 3.1.4 of the plugin. Users should immediately update to version 3.1.4 or later. The fix is available from the WordPress plugin repository. [1][4]