Project: Wordpress Plugin WP-Stateless – Google Cloud Storage 2.3.2

Vulnerability: #9253632 (2020-04-26 11:05:35)

Warning

There are many false positives, or unexploitable vulnerabilities. Please create working "PoC" exploit before reporting anything to vendor!

Details:

Sink PHP::echo
Risk _SERVER
/wp-stateless/static/views/setup_wizard_interface.php:2 (show/hide source)
1  <?php
2 $server_name = $_SERVER['HTTP_HOST']?$_SERVER['HTTP_HOST']: $_SERVER["SERVER_NAME"];
3 $id = str_replace('.', '-', $server_name); 4 $project_name = trim(substr($id, 0, 30), '-');
Threat level 0

Callstack:

@INLINE::/wp-stateless/static/views/setup_wizard_interface.php /wp-stateless/static/views/setup_wizard_interface.php:82 (show/hide source)
62                                      <div class="wpStateLess-userinfo">
63                                          <div class="photo-wrapper">
64                                              <img class="user-photo img-circle" src="<?php echo ud_get_stateless_media()->path( 'static/images/author-image.png'); ?>" alt="">
65                                          </div>
66                                          <div class="wpStateLess-user-details">
67                                              <h4><span class="user-name"></span> <a class="logout" href="#google-logout"><?php _e( 'Logout', ud_get_stateless_media()->domain ); ?></a></h4>
68                                              <p class="user-email"></p>
69                                          </div>
70                                      </div>
71                                      <div class="wpStateLess-step-setup-form">
72                                          <form action="#" method="POST">
73                                              <div id="stateless-notification" class="error">
74                                                  
75                                              </div>
76                                              <div class="wpStateLess-single-step-input">
77                                                  <label for="">
78                                                      <h4><?php _e( 'Google Cloud Project', ud_get_stateless_media()->domain ); ?></h4>
79                                                      <p><?php _e( 'By default we create a new project for you, or if you prefer, select an existing project.', ud_get_stateless_media()->domain ); ?></p>
80                                                  </label>
81                                                  <div class="wpStateLess-combo-box project">
82 <input type="hidden" class="id" value="<?php echo $project_id;?>">
83 <input type="text" class="name" value="<?php echo $project_name;?>" placeholder="Select or Create New Project"> 84 <div class="circle-loader">