WordPress Plugin Vulnerabilities

UX Flat < 4.5 - Contributor+ Stored XSS

Description

The plugin does not validate and escape some of its 'button' shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks

Affects Plugins

Plugin icon
ux-flat
Fixed in 4.5

References

CVE
CVE-2024-2459
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/1d93db2c-7baf-42d8-9b4a-be91b27221a7

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
5.9 (medium)

Miscellaneous

Original Researcher
Francesco Carlucci
Verified
No
WPVDB ID
8d332272-2e46-43dc-be25-1bb47ca0c94d

Timeline

Publicly Published
2024-03-19 (about 2 years ago)
Added
2024-03-19 (about 2 years ago)
Last Updated
2024-08-07 (about 1 year ago)

Other

Published
Title
Published
2024-05-22
Title
Hash Elements < 1.3.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via url Parameter in Multiple Widgets
Published
2025-03-07
Title
HT Mega – Absolute Addons For Elementor < 2.8.3 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via Countdown Widget
Published
2023-01-18
Title
Lightbox Gallery < 0.9.5 - Contributor+ Stored XSS via Shortcode
Published
2024-04-16
Title
WP 404 Auto Redirect to Similar Post < 1.0.5 - Reflected Cross-Site Scripting via Debug Mode URI
Published
2017-02-19
Title
Time Sheets < 1.5.2 - Multiple XSS