WordPress Plugin Vulnerabilities

CC BMI Calculator < 2.1.0 - Contributor+ Stored XSS

Description

The plugin does not escape some of its BMI Calculator Widget options before outputting them back in a page/post where the Widget is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks

Affects Plugins

Plugin icon
cc-bmi-calculator
Fixed in 2.1.0

References

CVE
CVE-2024-23516
URL
https://patchstack.com/database/vulnerability/cc-bmi-calculator/wordpress-cc-bmi-calculator-plugin-2-0-1-cross-site-scripting-xss-vulnerability

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
5.9 (medium)

Miscellaneous

Original Researcher
Ngô Thiên An (ancorn_)
Verified
Yes
WPVDB ID
dc873709-36c2-4365-a7f4-0924557835cf

Timeline

Publicly Published
2024-01-30 (about 2 years ago)
Added
2024-02-04 (about 2 years ago)
Last Updated
2024-04-29 (about 2 years ago)

Other

Published
Title
Published
2023-09-25
Title
Stagtools < 2.3.8 - Reflected XSS
Published
2021-08-24
Title
Recipe Card Blocks < 2.8.1 - Reflected Cross-Site Scripting
Published
2025-02-19
Title
Content Blocks (Custom Post Widget) < 3.3.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via content Parameter
Published
2016-03-12
Title
Soundy Background Music <= 3.1 - Reflected Cross-Site Scripting (XSS)
Published
2025-01-15
Title
Realtyna Provisioning < 1.2.3 - Reflected Cross-Site Scripting