Emil

**Name of the Vulnerable Software and Affected Versions** Advanced iFrame plugin for WordPress versions up to, and including, 2024.5 **Description** The issue arises from insufficient input sanitization and output escaping on user-supplied attributes through the `src` attribute in the `advanced iframe` shortcode. This allows authenticated attackers with contributor-level access or higher to inject arbitrary web scripts in pages. These scripts will execute whenever a user accesses an injected page. **Recommendations** For versions up to, and including, 2024.5, consider disabling the `advanced iframe` shortcode until a patch is available to prevent exploitation. Restrict access to the shortcode's `src` attribute to minimize the risk of arbitrary script injection. Avoid using the `src` attribute in the `advanced iframe` shortcode until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Moving Media Library plugin for WordPress versions up to, and including, 1.22 **Description** The issue arises from insufficient file path validation in the `generate json page` function, allowing authenticated attackers with Administrator-level access and above to delete arbitrary files on the server. This can lead to remote code execution if critical files, such as `wp-config.php`, are deleted. **Recommendations** For Moving Media Library plugin for WordPress versions up to, and including, 1.22, update to a version that includes a fix for the insufficient file path validation in the `generate json page` function to prevent arbitrary file deletion.

**Name of the Vulnerable Software and Affected Versions** Simple Download Counter plugin for WordPress versions up to and including 2.0 **Description** The issue allows authenticated attackers with Author-level access and above to read arbitrary files on the server, including sensitive data such as wp-config.php or /etc/passwd, via the `simple download counter download handler`. **Recommendations** For Simple Download Counter plugin for WordPress versions up to and including 2.0, update to a version above 2.0 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** The Link Fixer plugin for WordPress versions up to, and including, 3.4 **Description** The issue is related to Stored Cross-Site Scripting via broken links due to insufficient input sanitization and output escaping. This allows unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. **Recommendations** For versions up to, and including, 3.4, update to a version that addresses the insufficient input sanitization and output escaping issue to prevent Stored Cross-Site Scripting attacks.

**Name of the Vulnerable Software and Affected Versions** Moving Users plugin for WordPress versions up to and including 1.05 **Description** The Moving Users plugin for WordPress is vulnerable to sensitive information exposure in its export functionality. This issue arises because JSON files are stored in predictable locations with guessable file names when exporting user data. As a result, unauthenticated attackers could potentially extract sensitive user data, including email addresses, hashed passwords, and IP addresses. **Recommendations** For versions up to and including 1.05, consider disabling the export functionality until a patch is available to prevent unauthenticated attackers from extracting sensitive user data. Restrict access to the JSON files stored in predictable locations to minimize the risk of exploitation. Avoid using the export functionality until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.