The Gravity Forms plugin for WordPress is vulnerable to Unauthenticated Stored Cross-Site Scripting in versions up to and including 2.10.0. This is due to insufficient input validation and output escaping of Calculation Product field product names when rendered inside Repeater fields. The validate() method in the GF_Field_Calculation class only validates the quantity field (.3) and completely ignores the product name field (.1), allowing malicious HTML to pass through validation. When the value is saved, the sanitize_entry_value() method returns the raw value without sanitization for fields where HTML is not expected. Subsequently, when an entry is viewed in wp-admin, the get_value_entry_detail() method concatenates the unescaped product name directly into the output string, which is then rendered by the repeater's get_value_entry_detail() method without further escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts via form submissions that will execute whenever an authenticated administrator with the gravityforms_view_entries capability accesses the entry detail page.
Gravity Forms plugin for WordPress versions up to 2.10.0 contains an unauthenticated stored XSS vulnerability in Calculation Product fields within Repeater fields due to insufficient input validation and output escaping. Attackers can inject malicious HTML through product names that gets stored and executed when entries are viewed in the WordPress admin panel.
ثغرة XSS مخزنة في مكون Gravity Forms تسمح للمهاجمين بحقن أكواد HTML ضارة عبر حقول أسماء المنتجات في حقول المكررات. يتم تخزين الحمولة الضارة وتنفيذها عند عرض الإدخالات في لوحة تحكم WordPress. الثغرة تؤثر على الإصدارات حتى 2.10.0 وتتطلب تحديثاً فورياً.
Gravity Forms plugin for WordPress versions up to 2.10.0 contains an unauthenticated stored XSS vulnerability in Calculation Product fields within Repeater fields due to insufficient input validation and output escaping. Attackers can inject malicious HTML through product names that gets stored and executed when entries are viewed in the WordPress admin panel.
Update Gravity Forms plugin to version 2.10.1 or later immediately. Implement Web Application Firewall (WAF) rules to detect and block XSS payloads. Review and sanitize existing entries for malicious content. Restrict admin panel access to authorized personnel only. Enable security monitoring for suspicious form submissions.
قم بتحديث مكون Gravity Forms إلى الإصدار 2.10.1 أو أحدث فوراً. طبق قواعد جدار حماية تطبيقات الويب لكشف وحجب حمولات XSS. راجع وقم بتنظيف الإدخالات الموجودة من المحتوى الضار. قيد الوصول إلى لوحة التحكم على الموظفين المصرح لهم فقط. فعّل المراقبة الأمنية لتقديمات النماذج المريبة.