HTTP: Wordpress Google Tag Manager for WordPress Plugin Reflected Cross-Site Scripting
This signature detects attempts to exploit a known cross-site scripting vulnerability against WordPress Google Tag Manager for WordPress Plugin. It is due to insufficient validation of user-supplied input. Attackers can steal cookie-based authentication credentials and launch other attacks.
Extended Description
The Google Tag Manager for WordPress plugin for WordPress is vulnerable to reflected Cross-Site Scripting via the s parameter due to the site search populating into the data layer of sites with insufficient sanitization in versions up to an including 1.15. The affected file is ~/public/frontend.php and this could be exploited by unauthenticated attackers.
Affected Products
Gtm4wp google_tag_manager
References
CVE: CVE-2022-1707
Short Name
HTTP:XSS:WP-GOOGLE-PLUGIN-XSS
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2022-1707 Cross-Site Google Manager Plugin Reflected Scripting Tag WordPress Wordpress for
Release Date
06/30/2022
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3505
False Positive
Unknown
Vendors
Gtm4wp