Lucene search

[email protected]NVD:CVE-2023-0695

HistoryJun 09, 2023 - 6:15 a.m.

CVE-2023-0695

2023-06-0906:15:52

CWE-79

[email protected]

web.nvd.nist.gov

metform elementor

wordpress

cross-site scripting

authentication

contributor permissions

arbitrary web scripts

crafted link

form entry id

site database

CVSS3

5.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

EPSS

0.001

Percentile

40.5%

JSON

The Metform Elementor Contact Form Builder for WordPress is vulnerable to Cross-Site Scripting by using the ‘mf’ shortcode to echo unescaped form submissions in versions up to, and including, 3.3.0. This allows authenticated attackers, with contributor-level permissions or above, to inject arbitrary web scripts in pages that will execute when the victim visits a specific link. Note that getting the JavaScript to execute still requires user interaction as the victim must visit a crafted link with the form entry id, but the script itself is stored in the site database.

Affected configurations

Nvd

Node

wpmetmetform_elementor_contact_form_builderRange≤3.3.0wordpress

VendorProductVersionCPE
wpmetmetform_elementor_contact_form_builder*cpe:2.3:a:wpmet:metform_elementor_contact_form_builder:*:*:*:*:*:wordpress:*:*

Vendor	Product	Version	CPE
wpmet	metform_elementor_contact_form_builder	*	cpe:2.3:a:wpmet:metform_elementor_contact_form_builder::::::wordpress::*

References

plugins.trac.wordpress.org/browser/metform/trunk/base/shortcode.php?rev=2845078

www.wordfence.com/threat-intel/vulnerabilities/id/1c866d8d-399c-4bda-a3c9-17c7e5d2ffb8?source=cve