CVE-2023-6697 Scanner

WP Go Maps, previously known as WP Google Maps, is a popular plugin for WordPress that enables users to embed customizable maps on their websites. It is widely used for adding interactive maps, offering features like map markers, custom styling, and user location integration. WP Go Maps is used by small businesses, bloggers, and developers to enhance user experience on WordPress websites. The plugin has been continuously updated to improve functionality and security, but some vulnerabilities have been found in earlier versions. These versions are still widely in use, making them targets for attackers. This plugin is commonly installed on various websites to improve location-related features and provide a more engaging interface for users.

The vulnerability in WP Go Maps stems from insufficient input sanitization and output escaping, which allows attackers to inject malicious scripts into web pages. This flaw is found in the map_id parameter of the plugin, making it prone to a reflected Cross-Site Scripting (XSS) attack. Attackers can exploit this issue by tricking a user into clicking a specially crafted link, causing the injected script to execute in the user's browser. The vulnerability affects versions up to 9.0.28, which are still in use on many websites. The injected scripts could compromise the security of the affected website by executing malicious JavaScript in the context of a victim's browser. This vulnerability allows unauthenticated attackers to perform XSS attacks with ease.

In WP Go Maps, the vulnerability is located in the map_id parameter, which is not properly sanitized before being included in the page output. An attacker can manipulate this parameter and inject JavaScript code into the page. When a user accesses the malicious URL, the injected script is executed in their browser, potentially allowing attackers to steal cookies, hijack user sessions, or carry out further attacks. The attack is possible because the plugin does not perform adequate output escaping or input validation for the map_id parameter. The attacker needs only to craft a URL with a payload to trigger the XSS attack when a user clicks on it.

If exploited, this vulnerability can lead to several severe consequences, such as the theft of session cookies, user credential theft, and the execution of malicious actions within the user's browser. Attackers can use the XSS vulnerability to impersonate victims or redirect them to malicious websites. The vulnerability could also allow attackers to inject other forms of malware, escalate privileges, or manipulate content on the affected site. The exploitation of this vulnerability in high-traffic websites could have significant impacts, including reputation damage, data theft, and user trust erosion. The user interaction required for this attack makes it harder to automate but still dangerous for unsuspecting victims.

REFERENCES

• https://wpscan.com/vulnerability/ffcebd9d-82fe-4a30-8ad6-cf6c03753d4c/
• https://nvd.nist.gov/vuln/detail/CVE-2023-6697