WordPress Plugin Vulnerabilities

Table of Contents Plus < 2309 - Authenticated (Administrator+) Stored Cross-Site Scripting

Description

The Table of Contents Plus plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in versions up to, and including, 2302 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.

Affects Plugins

Plugin icon
table-of-contents-plus
Fixed in 2309

References

URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/05206a31-033e-49b9-9b66-5a6165782643

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
4.4 (medium)

Miscellaneous

Verified
No
WPVDB ID
a9d5ce50-af57-46ce-ab6e-61a813b094d9

Timeline

Publicly Published
2023-09-19 (about 2 years ago)
Added
2023-11-24 (about 2 years ago)
Last Updated
2023-12-18 (about 2 years ago)

Other

Published
Title
Published
2016-10-05
Title
WP Editor <= 1.2.6.2 - Multiple Cross-Site Scripting (XSS)
Published
2025-05-16
Title
WP Notes Widget <= 1.0.6 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2020-11-12
Title
Love Travel 2.0-3.8 - Unauthenticated Reflected XSS & XFS
Published
2024-05-20
Title
WP Shortcodes Plugin < 7.1.6 - Contributor+ Stored XSS via su_members Shortcode
Published
2025-06-27
Title
Thumbnail Editor <= 2.3.3 - Authenticated (Contributor+) Stored Cross-Site Scripting