CVE-2024-3210Cross-site Scripting in Profilepress

CWE-79Cross-site ScriptingCWE-918Server-Side Request ForgeryCWE-284Improper Access Control4 documents3 sources
Severity
5.4MEDIUMNVD
GHSA9.0
EPSS
0.4%
top 39.49%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Properfraction ProfilepressLobehub Chat
Timeline
PublishedApr 10
Latest updateSep 23

Description

The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'reg-single-checkbox' shortcode in all versions up to, and including, 4.15.5 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pa

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:NExploitability: 2.3 | Impact: 2.7

Affected Packages2 packages

npmlobehub/chat< 1.19.13+1

Patches

Patch: plugins.trac.wordpress.orgPatch: plugins.trac.wordpress.org

🔴Vulnerability Details

3
GHSA
lobe-chat implemented an insufficient fix for GHSA-mxhq-xw3g-rphc (CVE-2024-32964)2024-09-23
GHSA
GHSA-8h65-qg72-4ffh: The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vuln2024-04-10
GHSA
@lobehub/chat vulnerable to unauthorized access to plugins2024-01-31