CVE-2023-0399 – Image Over Image For WPBakery Page Builder < 3.0 - Contributor+ Stored XSS

https://notcve.org/view.php?id=CVE-2023-0399

The Image Over Image For WPBakery Page Builder WordPress plugin before 3.0 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. The Image Over Image For WPBakery Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's image_over_image_vc shortcode in versions up to, and including, 2.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers with contributor-level and above permissions to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. • https://wpscan.com/vulnerability/702d7bbe-93cc-4bc2-b41d-cb66e08c99a7 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •