Custom Permalinks < 2.7.0 – Authenticated(Editor+) Stored Cross-Site Scripting | CVE 2023-0926 | Plugin Vulnerabilities

Description

The Custom Permalinks plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 2.6.0 due to insufficient input sanitization and output escaping on tag names. This allows authenticated users, with editor-level permissions or greater to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page, even when 'unfiltered_html' has been disabled.

Affects Plugins

custom-permalinks

Fixed in 2.7.0

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/97f8549a-292d-4a6d-8ec0-550467e5cf0f

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

Ram

Verified

No

WPVDB ID

de172016-872e-48fa-91dc-eb5d3630c998

Timeline

Publicly Published

2024-08-23 (about 1 year ago)

Added

2024-08-23 (about 1 year ago)

Last Updated

2024-08-24 (about 1 year ago)

Other

Published

Title

Published

2015-01-30

Title

Banner Effect Header <= 1.2.7 - Cross-Site Scripting (XSS)

Published

2025-01-16

Title

Attach Gallery Posts <= 1.6 - Reflected Cross-Site Scripting

Published

2014-08-01

Title

GroupDocs Document Annotation 1.3.8 - options.php Multiple Parameter XSS

Published

2017-08-23

Title

Share On Diaspora < 0.7.2 - XSS

Published

2023-02-22

Title

WPB Advanced FAQ <= 1.0.6 - Contributor+ Stored XSS