Stackable < 3.12.12 – Contributor+ Stored XSS via Posts Block | CVE 2024-2039 | Plugin Vulnerabilities

Description

The plugin is vulnerable to Stored Cross-Site Scripting via the Post(v2) block title tag due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers with contributor-level and above permissions to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

Affects Plugins

stackable-ultimate-gutenberg-blocks

Fixed in 3.12.12

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/daa30b1b-cb8f-43fd-8329-c64b4024408f

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

Ngô Thiên An (ancorn_), Dau Hoang Tai

Verified

No

WPVDB ID

ab93ab20-73d1-4ea7-8d43-4f15953bb007

Timeline

Publicly Published

2024-03-28 (about 2 years ago)

Added

2024-03-29 (about 2 years ago)

Last Updated

2024-03-29 (about 2 years ago)

Other

Published

Title

Published

2023-05-30

Title

Woocommerce Order address Print <= 3.2 - Reflected XSS

Published

2024-07-10

Title

FULL < 3.1.13 - Unauthenticated Stored Cross-Site Scripting via License Plan Parameter

Published

2015-06-29

Title

Broken Link Checker <= 1.10.8 - Unauthenticated Stored XSS

Published

2025-06-28

Title

EZ SQL Reports Shortcode Widget and DB Backup < 5.25.25 - Authenticated (Contributor+) Stored Cross-Site Scripting via SQLREPORT Shortcode

Published

2024-01-23

Title

SVG Uploads Support <= 2.1.1 - Author+ Stored XSS via SVG