WP Ultimate Post Grid < 3.9.2 – Authenticated (Contributor+) Stored Cross-Site Scripting via wpupg-text Shortcode | CVE 2024-4043 | Plugin Vulnerabilities

Description

The WP Ultimate Post Grid plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wpupg-text' shortcode in all versions up to, and including, 3.9.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

Affects Plugins

wp-ultimate-post-grid

Fixed in 3.9.2

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/14e897f0-11e6-43b1-908c-be4ecdc7fd58

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

Krzysztof Zając

Verified

No

WPVDB ID

dab2b542-6f42-41f6-8816-0a6c7796ffee

Timeline

Publicly Published

2024-05-22 (about 2 years ago)

Added

2024-05-22 (about 2 years ago)

Last Updated

2024-05-23 (about 2 years ago)

Other

Published

Title

Published

2024-11-21

Title

LearnPress < 4.2.7.2 - Admin+ Stored XSS

Published

2025-06-18

Title

SpecFit-Virtual Try On Woocommerce <= 8.0.3 - Reflected Cross-Site Scripting

Published

2021-12-24

Title

Affiliates Manager < 2.9.0 - Unauthenticated Stored Cross-Site Scripting

Published

2025-11-17

Title

Photonic Gallery & Lightbox for Flickr, SmugMug & Others < 3.22 - Authenticated (Contributor+) Stored Cross-Site Scripting via Caption Attribute

Published

2022-07-18

Title

Thinkific Uploader <= 1.0.0 - Admin+ Stored Cross-Site Scripting