CVE-2022-4623
ND Shortcodes < 7.0 - Contributor+ Stored XSS via Shortcodes
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
The ND Shortcodes WordPress plugin before 7.0 does not validate and escape numerous of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks
The ND Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'nd_options_testimonial' shortcode in versions up to, and including, 6.9 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2022-12-21 CVE Reserved
- 2023-06-12 CVE Published
- 2024-07-10 EPSS Updated
- 2024-08-03 CVE Updated
- 2024-08-03 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|---|---|
| https://wpscan.com/vulnerability/1b3201da-f254-406f-9b4a-cd5025b6b03d | 2024-08-03 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Nicdark Search vendor "Nicdark" | Nd Shortcodes Search vendor "Nicdark" for product "Nd Shortcodes" | < 7.0 Search vendor "Nicdark" for product "Nd Shortcodes" and version " < 7.0" | wordpress |
Affected
| ||||||