CVE-2020-28038

MEDIUM

WordPress < 5.5.2 - Stored Cross-Site Scripting via Post Slugs

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-28038. PoCs published by flex0geek.

AI-analyzed exploit summary This repository provides a detailed technical analysis of CVE-2020-28038, a reflected XSS vulnerability in WordPress before 5.5.2. The writeup explains how improper handling of `$_SERVER['PHP_SELF']` and a flawed regex in `wp-includes/vars.php` allows injection of malicious JavaScript via crafted URLs.

Description

WordPress before 5.5.2 allows stored XSS via post slugs.

Exploits (1)

github WRITEUP 20 stars

by flex0geek · cpoc

https://github.com/flex0geek/cves-exploits/tree/main/CVE-2020-28038

View Code ZIP pw:eip

This repository provides a detailed technical analysis of CVE-2020-28038, a reflected XSS vulnerability in WordPress before 5.5.2. The writeup explains how improper handling of `$_SERVER['PHP_SELF']` and a flawed regex in `wp-includes/vars.php` allows injection of malicious JavaScript via crafted URLs.

Classification

Writeup 90%

Attack Type

Xss

Complexity

Moderate

Reliability

Reliable

Target: WordPress before 5.5.2

No auth needed

Prerequisites: Access to a vulnerable WordPress installation · Ability to craft a malicious URL

MITRE ATT&CK