Lucene search

WpvulndbWPVDB-ID:435FDDCA-448B-4D3E-9E13-AF6E002F357F

HistoryMar 04, 2024 - 12:00 a.m.

Ebook Store < 5.8002 - Admin+ Stored XSS

2024-03-0400:00:00

wpscan.com

ebook store

plugin

stored xss

vulnerability

high privilege users

unfiltered_html

multisite setup

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L

0.0004 Low

EPSS

Percentile

9.1%

JSON

Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)

CPENameOperatorVersion
eq5.8002

CPE	Name	Operator	Version
		eq	5.8002

References

patchstack.com/database/vulnerability/ebook-store/wordpress-ebook-store-plugin-5-788-cross-site-scripting-xss-vulnerability