CVE-2018-20838
published 2019-05-13CVE-2018-20838: ampforwp_save_steps_data in the AMP for WP plugin before 0.9.97.21 for WordPress allows stored XSS.
PriorityP278medium5.4CVSS 3.0
AVNACLPRLUIRSCCLILAN
ITWVulnCheck KEV
Exploited in the wild
EPSS
1.08%
60.8th percentile
ampforwp_save_steps_data in the AMP for WP plugin before 0.9.97.21 for WordPress allows stored XSS.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| magazine3 | amp_for_wp | < 0.9.97.21 | 0.9.97.21 |
CVSS provenance
nvdv3.05.4MEDIUMCVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
nvdv2.03.5LOWAV:N/AC:M/Au:S/C:N/I:P/A:N
vulncheck5.4MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-x6fh-2jjp-6486: ampforwp_save_steps_data in the AMP for WP plugin before 0
ghsa_unreviewed·2022-05-24
CVE-2018-20838 [MEDIUM] GHSA-x6fh-2jjp-6486: ampforwp_save_steps_data in the AMP for WP plugin before 0
ampforwp_save_steps_data in the AMP for WP plugin before 0.9.97.21 for WordPress allows stored XSS.
VulnCheck
magazine3 amp_for_wp Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
vulncheck·2018·CVSS 5.4
CVE-2018-20838 [MEDIUM] magazine3 amp_for_wp Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
magazine3 amp_for_wp Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
ampforwp_save_steps_data in the AMP for WP plugin before 0.9.97.21 for WordPress allows stored XSS.
Affected: magazine3 amp_for_wp
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://wpscan.com/vulnerability/46b90ea0-df16-4af4-a6e9-fa5d6e702d15/
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://ampforwp.com/critical-security-issues-has-been-fixed-in-0-9-97-20-version/https://plugins.trac.wordpress.org/browser/accelerated-mobile-pages/trunk/changelog.txthttps://wordpress.org/plugins/accelerated-mobile-pages/#developershttps://www.wordfence.com/blog/2018/11/xss-injection-campaign-exploits-wordpress-amp-plugin/https://ampforwp.com/critical-security-issues-has-been-fixed-in-0-9-97-20-version/https://plugins.trac.wordpress.org/browser/accelerated-mobile-pages/trunk/changelog.txthttps://wordpress.org/plugins/accelerated-mobile-pages/#developershttps://www.wordfence.com/blog/2018/11/xss-injection-campaign-exploits-wordpress-amp-plugin/
2019-05-13
Published
Exploited in the wild