Lucene search

WordfenceCVE-2024-4439

HistoryMay 03, 2024 - 6:15 a.m.

CVE-2024-4439

2024-05-0306:15:14

CWE-80

Wordfence

web.nvd.nist.gov

107

wordpress

cross-site scripting

vulnerability

authentication

contributor-level access

avatar block

comment block

nvd

CVSS3

7.2

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

AI Score

6.1

Confidence

High

EPSS

0.001

Percentile

28.1%

JSON

WordPress Core is vulnerable to Stored Cross-Site Scripting via user display names in the Avatar block in various versions up to 6.5.2 due to insufficient output escaping on the display name. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. In addition, it also makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that have the comment block present and display the comment author’s avatar.

Affected configurations

Vulners

Vulnrichment

Node

wordpresswordpressRange6.0–6.0.7wordpress

wordpresswordpressRange6.1–6.1.5wordpress

wordpresswordpressRange6.2–6.2.4wordpress

wordpresswordpressRange6.3–6.3.3wordpress

wordpresswordpressRange6.4–6.4.3wordpress

wordpresswordpressRange6.5–6.5.1wordpress

VendorProductVersionCPE
wordpresswordpress*cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:wordpress:*:*

Vendor	Product	Version	CPE
wordpress	wordpress	*	cpe:2.3:a:wordpress:wordpress::::::wordpress::*

CNA Affected

[
  {
    "vendor": "WordPress Foundation",
    "product": "WordPress",
    "versions": [
      {
        "version": "6.0",
        "status": "affected",
        "lessThanOrEqual": "6.0.7",
        "versionType": "semver"
      },
      {
        "version": "6.1",
        "status": "affected",
        "lessThanOrEqual": "6.1.5",
        "versionType": "semver"
      },
      {
        "version": "6.2",
        "status": "affected",
        "lessThanOrEqual": "6.2.4",
        "versionType": "semver"
      },
      {
        "version": "6.3",
        "status": "affected",
        "lessThanOrEqual": "6.3.3",
        "versionType": "semver"
      },
      {
        "version": "6.4",
        "status": "affected",
        "lessThanOrEqual": "6.4.3",
        "versionType": "semver"
      },
      {
        "version": "6.5",
        "status": "affected",
        "lessThanOrEqual": "6.5.1",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]