CVE-2023-38000
Auth. Stored Cross-Site Scripting (XSS) vulnerability in WordPress core and Gutenberg plugin via Navigation Links Block
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
Auth. Stored (contributor+) Cross-Site Scripting (XSS) vulnerability in WordPress coreĀ 6.3 through 6.3.1, from 6.2 through 6.2.2, from 6.1 through 6.1.3, from 6.0 through 6.0.5, from 5.9 through 5.9.7 and Gutenberg plugin <= 16.8.0 versions.
Vulnerabilidad de Coss-Site Scripting (XSS) autenticada (con permisos de colaboradores o superiores) almacenada en WordPress core 6.3 a 6.3.1, de 6.2 a 6.2.2, de 6.1 a 6.1.3, de 6.0 a 6.0.5, de 5.9 a 5.9.7 y versiones del complemento Gutenberg en versiones <= 16.8.0.
WordPress Core is vulnerable to Stored Cross-Site Scripting via the arrow navigation block attributes in versions between 5.9 and 6.3.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with contributor-level privileges and above to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Auth. Stored (contributor+) Cross-Site Scripting (XSS) vulnerability in WordPress core 6.3 through 6.3.1, from 6.2 through 6.2.2, from 6.1 through 6.1.3, from 6.0 through 6.0.5, from 5.9 through 5.9.7 and Gutenberg plugin <= 16.8.0 versions.
Several security vulnerabilities have been discovered in Wordpress, a popular content management framework, which may lead to exposure of sensitive information to an unauthorized actor in WordPress or allowing unauthenticated attackers to discern the email addresses of users who have published public posts on an affected website via an Oracle style attack.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2023-07-11 CVE Reserved
- 2023-10-12 CVE Published
- 2024-08-02 CVE Updated
- 2024-08-02 First Exploit
- 2025-04-02 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CAPEC
- CAPEC-592: Stored XSS
References (3)
| URL | Date | SRC |
|---|---|---|
| https://patchstack.com/articles/wordpress-core-6-3-2-security-update-technical-advisory?_s_id=cve | 2024-08-02 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Wordpress Search vendor "Wordpress" | Wordpress Search vendor "Wordpress" for product "Wordpress" | >= 5.9 <= 5.9.7 Search vendor "Wordpress" for product "Wordpress" and version " >= 5.9 <= 5.9.7" | - |
Affected
| ||||||
| Wordpress Search vendor "Wordpress" | Wordpress Search vendor "Wordpress" for product "Wordpress" | >= 6.0 <= 6.0.5 Search vendor "Wordpress" for product "Wordpress" and version " >= 6.0 <= 6.0.5" | - |
Affected
| ||||||
| Wordpress Search vendor "Wordpress" | Wordpress Search vendor "Wordpress" for product "Wordpress" | >= 6.1 <= 6.1.3 Search vendor "Wordpress" for product "Wordpress" and version " >= 6.1 <= 6.1.3" | - |
Affected
| ||||||
| Wordpress Search vendor "Wordpress" | Wordpress Search vendor "Wordpress" for product "Wordpress" | >= 6.2 <= 6.2.2 Search vendor "Wordpress" for product "Wordpress" and version " >= 6.2 <= 6.2.2" | - |
Affected
| ||||||
| Wordpress Search vendor "Wordpress" | Wordpress Search vendor "Wordpress" for product "Wordpress" | >= 6.3 <= 6.3.1 Search vendor "Wordpress" for product "Wordpress" and version " >= 6.3 <= 6.3.1" | - |
Affected
| ||||||
| Wordpress Search vendor "Wordpress" | Gutenberg Search vendor "Wordpress" for product "Gutenberg" | <= 16.8.0 Search vendor "Wordpress" for product "Gutenberg" and version " <= 16.8.0" | wordpress |
Affected
| ||||||