Lucene search

WpvulndbWPVDB-ID:BA056EBE-8DD0-4855-A068-BD2BB607FB05

HistoryJun 11, 2024 - 12:00 a.m.

Visual Composer Website Builder < 45.9.0 - Authenticated (Editor+) Stored Cross-Site Scripting

2024-06-1100:00:00

wpscan.com

wordpress

plugin vulnerability

stored xss

input sanitization

output escaping

authenticated attack

editor level permissions

multi-site installations

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L

5.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

14.2%

JSON

Description The Visual Composer Website Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 45.8.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with editor-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.

CPENameOperatorVersion
eq45.9.0

CPE	Name	Operator	Version
		eq	45.9.0

References

www.wordfence.com/threat-intel/vulnerabilities/id/856e27ea-fec2-4805-bc66-f20b83b9610c