WordPress Plugin Vulnerabilities

BSK PDF Manager < 3.4.2 - Contributor+ Stored XSS via Shortcode

Description

The plugin does not validate and escape some of its attributes for the bsk-pdfm-category-dropdown shortcode before outputting them back into the page, which could allow users with a role as low as a contributor to perform Stored Cross-Site Scripting attacks, which could be used against high-privilege users such as admins.

Affects Plugins

Plugin icon
bsk-pdf-manager
Fixed in 3.4.2

References

CVE
CVE-2023-5110
URL
https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/bsk-pdf-manager/bsk-pdf-manager-341-authenticated-contributor-stored-cross-site-scripting-via-shortcode

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
6.4 (medium)

Miscellaneous

Original Researcher
Lana Codes
Verified
No
WPVDB ID
e486b0ef-cf96-4f03-a78d-3eff874dae81

Timeline

Publicly Published
2023-10-23 (about 2 years ago)
Added
2023-10-25 (about 2 years ago)
Last Updated
2023-11-15 (about 2 years ago)

Other

Published
Title
Published
2024-11-08
Title
Pull This <= 1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2024-03-25
Title
Easy Social Share Buttons < 9.5 - Reflected Cross-Site Scripting
Published
2023-01-24
Title
Youzify < 1.2.2 - Contributor+ Stored XSS
Published
2025-03-31
Title
Simple-Audioplayer <= 1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2025-05-07
Title
Progress Bar < 2.2.4 - Authenticated (Contributor+) Stored Cross-Site Scripting