Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2024 Greenbone AGOPENVAS:1361412562310126607
HistoryJan 04, 2024 - 12:00 a.m.

WordPress Bold Page Builder Plugin < 4.3.3 XSS Vulnerability

2024-01-0400:00:00
Copyright (C) 2024 Greenbone AG
plugins.openvas.org
3
wordpress
bold page builder
xss
vulnerability
unsanitized settings
cross-site scripting
update
version 4.3.3
high privilege

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

CVSS3

4.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

AI Score

7

Confidence

Low

EPSS

0.001

Percentile

24.8%

JSON

The WordPress plugin

# SPDX-FileCopyrightText: 2024 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

CPE = "cpe:/a:bold-themes:bold_page_builder";

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.126607");
  script_version("2024-01-10T05:05:17+0000");
  script_tag(name:"last_modification", value:"2024-01-10 05:05:17 +0000 (Wed, 10 Jan 2024)");
  script_tag(name:"creation_date", value:"2024-01-04 11:04:50 +0000 (Thu, 04 Jan 2024)");
  script_tag(name:"cvss_base", value:"3.5");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:S/C:N/I:P/A:N");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2022-07-15 21:13:00 +0000 (Fri, 15 Jul 2022)");

  script_cve_id("CVE-2022-2089");

  script_tag(name:"qod_type", value:"remote_banner");

  script_tag(name:"solution_type", value:"VendorFix");

  script_name("WordPress Bold Page Builder Plugin < 4.3.3 XSS Vulnerability");

  script_category(ACT_GATHER_INFO);

  script_copyright("Copyright (C) 2024 Greenbone AG");
  script_family("Web application abuses");
  script_dependencies("gb_wordpress_plugin_http_detect.nasl");
  script_mandatory_keys("wordpress/plugin/bold-page-builder/detected");

  script_tag(name:"summary", value:"The WordPress plugin 'Bold Page Builder' is prone to a
  cross-site scripting (XSS) vulnerability.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");

  script_tag(name:"insight", value:"The plugin does not sanitise and escape some of its settings,
  which could allow high privilege use such as admin to perform Cross-Site Scripting attacks even
  when unfiltered_html is disallowed.");

  script_tag(name:"affected", value:"WordPress Bold Page Builder plugin prior to version 4.3.3.");

  script_tag(name:"solution", value:"Update to version 4.3.3 or later.");

  script_xref(name:"URL", value:"https://wpscan.com/vulnerability/9fe7e9d5-7bdf-4ade-9a3c-b4af863fa4e8/");

  exit(0);
}

include("version_func.inc");
include("host_details.inc");

if( ! port = get_app_port( cpe: CPE ) )
  exit( 0 );

if( ! infos = get_app_version_and_location( cpe: CPE, port: port, exit_no_version: TRUE ) )
  exit( 0 );

version = infos["version"];
location = infos["location"];

if( version_is_less( version: version, test_version: "4.3.3" ) ) {
  report = report_fixed_ver( installed_version: version, fixed_version: "4.3.3", install_path: location );
  security_message( data: report, port: port );
  exit( 0 );
}

exit( 99 );

Related

cnvd 1
prion 1
patchstack 1
wpexploit 1
nvd 1
wpvulndb 1
cvelist 1
cve 1
cnvd
cnvd
WordPress Bold Page Builder pluginθ·¨η«™θ„šζœ¬ζΌζ΄ž
2022-07-13 00:00:00
prion
prion
Cross site scripting
2022-07-11 13:15:00
patchstack
patchstack
WordPress Bold Page Builder plugin <= 4.3.2 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability
2022-06-20 00:00:00
wpexploit
wpexploit
Bold Page Builder < 4.3.3 - Admin+ Stored Cross-Site Scripting
2022-06-20 00:00:00
nvd
nvd
CVE-2022-2089
2022-07-11 13:15:09
wpvulndb
wpvulndb
Bold Page Builder < 4.3.3 - Admin+ Stored Cross-Site Scripting
2022-06-20 00:00:00
cvelist
cvelist
CVE-2022-2089 Bold Page Builder < 4.3.3 - Admin+ Stored Cross-Site Scripting
2022-07-11 12:57:15
cve
cve
CVE-2022-2089
2022-07-11 13:15:09

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

CVSS3

4.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

AI Score

7

Confidence

Low

EPSS

0.001

Percentile

24.8%

JSON
Related for OPENVAS:1361412562310126607
cnvd1prion1patchstack1wpexploit1nvd1wpvulndb1cvelist1cve1