WordPress Plugin Vulnerabilities

Accordion & FAQ – Helpie WordPress Accordion FAQ Plugin < 1.28 - Authenticated (Editor+) Stored Cross-Site Scripting

Description

The FAQ / Accordion / Docs – Helpie WordPress FAQ Accordion plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via settings in all versions up to, and including, 1.27 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with editor-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.

Affects Plugins

Plugin icon
helpie-faq
Fixed in 1.28

References

CVE
CVE-2024-47647
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/66293047-1d1d-434f-bde6-130197fa93ca

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
4.4 (medium)

Miscellaneous

Original Researcher
0tter
Verified
No
WPVDB ID
3c79cdea-9bfa-4f38-83ef-0dd5f50b6435

Timeline

Publicly Published
2024-09-30 (about 1 year ago)
Added
2024-10-10 (about 1 year ago)
Last Updated
2024-10-10 (about 1 year ago)

Other

Published
Title
Published
2025-01-16
Title
Bit.ly linker <= 1.1 - Reflected Cross-Site Scripting
Published
2025-02-03
Title
Pop Up <= 0.1 - Authenticated (Administrator+) Stored Cross-Site Scripting
Published
2021-08-31
Title
Software License Manager < 4.5.0 - Admin+ Stored Cross-Site Scripting
Published
2015-12-22
Title
Content text slider on post < 6.9 - Authenticated Stored Cross-Site Scripting (XSS)
Published
2014-08-01
Title
WP Super Cache 1.3 - trunk/plugins/wptouch.php URI XSS