Greenhats

**Name of the Vulnerable Software and Affected Versions** Broadstreet versions prior to 1.53.2 **Description** The Broadstreet plugin for WordPress contains a Stored Cross-Site Scripting issue in the admin settings caused by insufficient input sanitization and output escaping. Authenticated attackers with administrator-level permissions or higher can inject arbitrary web scripts into pages, which then execute when a user visits the affected page. This issue specifically impacts multi-site installations and environments where `unfiltered html` has been disabled. **Recommendations** Update to a version later than 1.53.1.

**Name of the Vulnerable Software and Affected Versions** Broadstreet versions prior to 1.53.2 **Description** The Broadstreet plugin for WordPress allows unauthorized access because it fails to perform a capability check on the 'create advertiser' AJAX action. This allows authenticated users with Subscriber-level permissions or higher to create advertisers. **Recommendations** Update to a version later than 1.53.1. As a temporary workaround, restrict access to the 'create advertiser' AJAX action to prevent unauthorized advertiser creation.

**Name of the Vulnerable Software and Affected Versions** Broadstreet versions prior to 1.53.2 **Description** The Broadstreet plugin for WordPress contains a sensitive information exposure flaw. Authenticated attackers with subscriber-level access or higher can extract data from private and password-protected business details through the 'get sponsored meta()' AJAX action. **Recommendations** Update the plugin to a version later than 1.53.1. As a temporary workaround, restrict access to the `get sponsored meta()` AJAX action to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** WP Timetics versions prior to 1.0.37 **Description** The Appointment Booking and Scheduling Calendar Plugin – WP Timetics for WordPress is susceptible to unauthorized access and modification of data. This is due to a missing capability check on the `update` and `register routes` functions. An unauthenticated attacker can view and modify booking details. **Recommendations** Update to version 1.0.37 or later.

**Name of the Vulnerable Software and Affected Versions** VikRestaurants Table Reservations and Take-Away versions through 1.4 **Description** The software contains a flaw due to improper handling of user-supplied data when creating web pages, leading to a Stored Cross-site Scripting condition. This allows an attacker to inject malicious scripts into web pages viewed by other users. The affected software is VikRestaurants Table Reservations and Take-Away. **Recommendations** Update VikRestaurants Table Reservations and Take-Away to a version later than 1.4.

**Name of the Vulnerable Software and Affected Versions** VikRestaurants Table Reservations and Take-Away versions through 1.4 **Description** The software contains a flaw related to improper handling of user-supplied data when creating web pages, potentially leading to Reflected Cross-site Scripting. This could allow an attacker to inject malicious scripts into web pages viewed by other users. **Recommendations** Update VikRestaurants Table Reservations and Take-Away to a version later than 1.4.

Name of the Vulnerable Software and Affected Versions: Webba Booking versions through 6.0.5 Description: Webba Booking is susceptible to a cross-site scripting (XSS) issue due to improper neutralization of input during web page generation. This allows for stored XSS attacks. Recommendations: Update Webba Booking to a version later than 6.0.5.

Name of the Vulnerable Software and Affected Versions: CreedAlly Bulk Featured Image versions 1.2.1 and earlier Description: The issue allows uploading a Web Shell to a web server due to unrestricted file upload with dangerous file types. Recommendations: For CreedAlly Bulk Featured Image versions 1.2.1 and earlier, consider restricting file uploads to only allow safe file types until a fix is available. As a temporary workaround, restrict access to the file upload functionality to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: fridaysystems Inventory Presser versions through 15.0.0 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an attacker can inject malicious scripts into the website, potentially leading to unauthorized access or control. Recommendations: For versions through 15.0.0, update to a version later than 15.0.0 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Matt WP Voting Contest versions n/a through 5.8 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an attacker can inject malicious scripts into the website, potentially affecting users who visit the page. Recommendations: For Matt WP Voting Contest versions n/a through 5.8, update to a version later than 5.8 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Recipes manager - WPH versions 1.0.0 through 1.0.4 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Stored XSS. This means that an attacker can inject malicious scripts into the website, which can then be executed by other users. Recommendations: For versions 1.0.0 through 1.0.4, update to a version later than 1.0.4 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.