WordPress Plugin Vulnerabilities

Shortcode Menu <= 3.2 - Contributor+ Stored Cross-Site Scripting

Description

The plugin does not properly sanitize user input or escape output in the 'shortmenu' shortcode, leading to a Stored Cross-Site Scripting vulnerability. This issue allows authenticated users with contributor-level and above permissions to inject arbitrary web scripts into pages.

Affects Plugins

Plugin icon
shortcode-menu
No known fix

References

CVE
CVE-2023-5565
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/438b9c13-4059-4671-ab4a-07a8cf6f6122

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
6.4 (medium)

Miscellaneous

Original Researcher
Lana Codes
Verified
No
WPVDB ID
36a8d01b-5d13-4e51-a0e5-9d1f84beab78

Timeline

Publicly Published
2023-10-29 (about 2 years ago)
Added
2023-11-03 (about 2 years ago)
Last Updated
2023-11-03 (about 2 years ago)

Other

Published
Title
Published
2024-01-08
Title
OneClick Chat to Order < 1.0.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode
Published
2024-12-23
Title
WP Datepicker < 2.1.5 - Reflected Cross-Site Scripting
Published
2024-08-08
Title
Element Pack Elementor Addons < 5.7.7 - Contributor+ Stored XSS via title_tag
Published
2023-05-16
Title
Contact Form Email < 1.3.38 - Unauthenticated Stored Cross-Site Scripting
Published
2026-04-15
Title
Vantage < 1.20.33 - Authenticated (Contributor+) Stored Cross-Site Scripting via Gallery Block Text Content