Lucene search

GoogleOSV:CVE-2023-48300

HistoryNov 20, 2023 - 7:15 p.m.

CVE-2023-48300

2023-11-2019:15:09

Google

osv.dev

wordpress

embed privacy

plugin

cross-site scripting

vulnerability

input sanitization

6.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

5.7 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

19.1%

JSON

The Embed Privacy plugin for WordPress that prevents the loading of embedded external content is vulnerable to Stored Cross-Site Scripting via embed_privacy_opt_out shortcode in versions up to, and including, 1.8.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers with contributor-level and above permissions to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. Version 1.8.1 contains a patch for this issue.

CPENameOperatorVersion
embed-privacyeq1.0.0
embed-privacyeq1.4.6
embed-privacyeq1.3.0
embed-privacyeq1.3.3
embed-privacyeq1.6.3
embed-privacyeq1.3.1
embed-privacyeq1.7.1
embed-privacyeq1.4.5
embed-privacyeq1.1.1
embed-privacyeq1.1.2

Name	Operator	Version
embed-privacy	eq	1.0.0
embed-privacy	eq	1.4.6
embed-privacy	eq	1.3.0
embed-privacy	eq	1.3.3
embed-privacy	eq	1.6.3
embed-privacy	eq	1.3.1
embed-privacy	eq	1.7.1
embed-privacy	eq	1.4.5
embed-privacy	eq	1.1.1
embed-privacy	eq	1.1.2

Rows per page:

1-10 of 391

References

d.pr/v/ORuIat

github.com/epiphyt/embed-privacy/commit/f80929992b2a5a66f4f4953cd6f46cc227154a5c

github.com/epiphyt/embed-privacy/issues/199

github.com/epiphyt/embed-privacy/security/advisories/GHSA-3wv9-4rvf-w37g