Akash Rajendra Patil

**Name of the Vulnerable Software and Affected Versions** Event List WordPress plugin versions prior to 0.8.8 **Description** The issue allows high privilege users, such as admins, to perform Cross-Site Scripting attacks against other admins, even when the unfiltered html is disallowed. This is due to the plugin not sanitizing and escaping some of its settings. **Recommendations** For versions prior to 0.8.8, update to version 0.8.8 or later to resolve the issue. As a temporary workaround, consider restricting access to the plugin's settings to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Visual Form Builder WordPress plugin versions prior to 3.0.7 **Description** The issue concerns the lack of sanitization and escaping in the form's `Email to` field, which could allow high-privilege users to perform Cross-Site Scripting attacks, even when the unfiltered html capability is disallowed. **Recommendations** For versions prior to 3.0.7, update to version 3.0.7 or later to resolve the issue. As a temporary workaround, consider restricting access to the `Email to` field to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Ninja Tables WordPress plugin versions prior to 4.1.8 **Description** The issue allows high privilege users to perform Cross-Site Scripting attacks due to the plugin not sanitising and escaping some of its table fields, even when the unfiltered html capability is disallowed. **Recommendations** For versions prior to 4.1.8, update to version 4.1.8 or later to resolve the issue. As a temporary workaround, consider restricting the use of the plugin's table fields to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: Media-Tags WordPress plugin versions prior to 3.2.0.3 Description: The issue allows high privilege users to perform Cross-Site Scripting attacks due to the lack of sanitization and escaping of its Labels settings. This can occur even when the unfiltered html capability is disallowed. Recommendations: For Media-Tags WordPress plugin versions prior to 3.2.0.3, update to version 3.2.0.3 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** St-Daily-Tip WordPress plugin versions 4.7 and earlier **Description** The issue is related to the lack of CSRF check when saving the 'Default Text to Display if no tips' setting, as well as insufficient sanitisation and escaping before outputting it on the page. This could allow an attacker to make logged-in administrators set a malicious payload, leading to a Stored Cross-Site Scripting issue. **Recommendations** For St-Daily-Tip WordPress plugin versions 4.7 and earlier, consider disabling the 'Default Text to Display if no tips' setting until a patch is available to prevent potential exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Special Text Boxes WordPress plugin versions prior to 5.9.110 **Description** The issue allows high privilege users to perform Cross-Site Scripting attacks, even when the unfiltered html is disallowed, due to the plugin not sanitising or escaping some of its settings. **Recommendations** For Special Text Boxes WordPress plugin versions prior to 5.9.110, update to version 5.9.110 or later to resolve the issue. As a temporary workaround, consider restricting access to the plugin's settings to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** My Site Audit WordPress plugin versions 1.2.4 and earlier **Description** The issue allows high privilege users to set JavaScript payloads in the Audit Name field when creating an audit, due to a lack of sanitization or escaping, leading to an authenticated Stored Cross-Site Scripting issue. This occurs even when the unfiltered html capability is disallowed. **Recommendations** For My Site Audit WordPress plugin versions 1.2.4 and earlier, consider disabling the ability to set custom Audit Name fields until a patch is available to prevent the injection of JavaScript payloads. Restrict access to the audit creation feature to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TaxoPress – Create and Manage Taxonomies, Tags, Categories WordPress plugin versions prior to 3.0.7.2 **Description** The issue allows high privilege users to set JavaScript payload in the Taxonomy description field, leading to an authenticated Stored Cross-Site Scripting issue, even when the unfiltered html capability is disallowed. This occurs because the Taxonomy description field is not properly sanitised. **Recommendations** For versions prior to 3.0.7.2, update to version 3.0.7.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the Taxonomy description field to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** User Registration & User Profile – Profile Builder WordPress plugin versions prior to 3.4.8 **Description** The issue allows high privilege users to inject JavaScript code into the 'Modify default Redirect Delay timer' setting, leading to an authenticated Stored Cross-Site Scripting issue, even when the unfiltered html capability is disallowed. **Recommendations** For versions prior to 3.4.8, update to version 3.4.8 or later to resolve the issue. As a temporary workaround, consider restricting access to the 'Modify default Redirect Delay timer' setting to prevent potential exploitation.