WordPress Plugin Vulnerabilities

Relevanssi <= 4.24.3 (Free) and <= 2.27.4 (Premium) - Unauthenticated Stored Cross-Site Scripting via Search Highlights

Description

The Relevanssi – A Better Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the highlights functionality in all versions up to, and including, 4.24.3 (Free) and <= 2.27.4 (Premium), due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page via the search results.

Affects Plugins

Plugin icon
relevanssi
Fixed in 4.24.4

References

CVE
CVE-2025-4054
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/6f77f10b-f142-4859-a941-0fbde6ef7fdb

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
6.1 (medium)

Miscellaneous

Original Researcher
Jack Taylor
Verified
No
WPVDB ID
2295e503-5045-49a8-a279-43b04df36685

Timeline

Publicly Published
2025-05-06 (about 1 year ago)
Added
2025-05-06 (about 1 year ago)
Last Updated
2025-05-12 (about 1 year ago)

Other

Published
Title
Published
2024-05-30
Title
Safety Exit < 1.7.1 - Authenticated (Admin+) Stored Cross-Site Scripting
Published
2025-09-10
Title
Evenium <= 1.3.11 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2024-06-27
Title
NextScripts <= 4.4.6 - Reflected Cross-Site Scripting
Published
2024-12-20
Title
G Web Pro Store Locator <= 2.1 - Reflected Cross-Site Scripting
Published
2024-11-05
Title
Pricing Tables WordPress Plugin – Easy Pricing Tables < 3.2.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via fontFamily Attribute