John Castro

Name of the Vulnerable Software and Affected Versions: The User Profile Builder WordPress plugin versions prior to 3.12.2 Description: The issue allows Admin+ users to perform Cross-Site Scripting attacks due to the plugin's failure to sanitise and escape some parameters before outputting its content on the admin area. Recommendations: For versions prior to 3.12.2, update to version 3.12.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the admin area to minimize the risk of exploitation. Avoid using the vulnerable plugin until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** NextScripts: Social Networks Auto-Poster plugin for WordPress versions prior to 4.3.17 **Description** The NextScripts: Social Networks Auto-Poster plugin for WordPress is vulnerable to authorization bypass due to missing capability checks on multiple user privilege/security functions. This makes it possible for low-privileged attackers to perform restricted actions that would be otherwise locked to an administrative-level user. **Recommendations** For NextScripts: Social Networks Auto-Poster plugin for WordPress versions prior to 4.3.17: Update to the latest version to mitigate risks and protect your site from potential security bypass vulnerabilities.

**Name of the Vulnerable Software and Affected Versions** TI WooCommerce Wishlist WordPress plugin versions 2.8.2 and earlier **Description** The issue is related to SQL Injection due to insufficient escaping on the `user supplied parameter` and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database. **Recommendations** For versions 2.8.2 and earlier, update to the latest version to resolve the issue. As a temporary workaround, consider restricting access to sensitive database information until a patch is applied. Avoid using user-supplied parameters in SQL queries without proper sanitization and validation.

**Name of the Vulnerable Software and Affected Versions** YITH WooCommerce Ajax Search (affected versions not specified) **Description** The issue is related to insufficient sanitization of user-supplied block attributes, which allows attackers with Contributors+ permissions to inject arbitrary scripts. This is a XSS vulnerability. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Popular WordPress Plugin (affected versions not specified) **Description** The issue allows an attacker to gain administrative access without having an account on the targeted site, enabling them to perform unauthorized actions. This is caused by improper logic flow in the user registration process. It's estimated that around 50,000 sites are exposed to this issue. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cozmoslabs Profile Builder plugin versions <= 3.6.0 **Description** The issue concerns a Cross-Site Request Forgery (CSRF) vulnerability. It allows for the upload of a JSON file and the update of options, requiring the Import and Export add-on. **Recommendations** For Cozmoslabs Profile Builder plugin versions <= 3.6.0, update to a version greater than 3.6.0 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Qube One Redirection for Contact Form 7 plugin version 2.4.0 and earlier **Description** The issue allows unauthenticated attackers to change options and inject scripts into the footer HTML, potentially leading to content injection. This requires an additional extension, AccessiBe. **Recommendations** For Qube One Redirection for Contact Form 7 plugin version 2.4.0 and earlier, update to a version later than 2.4.0 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Andrea Pernici News Sitemap for Google plugin version 1.0.16 and earlier **Description** The issue is a Stored Cross-Site Scripting (XSS) vulnerability. Attackers must have a contributor or higher user role to exploit this issue. **Recommendations** For Andrea Pernici News Sitemap for Google plugin version 1.0.16 and earlier, update to a version later than 1.0.16 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Image Hover Effects Ultimate versions prior to 9.6.1 **Description** The issue is an Unauthenticated Arbitrary Options Update vulnerability. This vulnerability can lead to a full website compromise. **Recommendations** For versions prior to 9.6.1, update to version 9.6.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** WordPress Comment Engine Pro plugin versions <= 1.0 **Description** A Stored Cross-Site Scripting (XSS) issue was found in the WordPress Comment Engine Pro plugin. This could be exploited by users with an Editor or higher role. **Recommendations** For WordPress Comment Engine Pro plugin versions <= 1.0, update to a version higher than 1.0 to resolve the issue. As a temporary workaround, consider restricting the role of users to below Editor to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** icegram plugin versions prior to 1.10.29 for WordPress **Description** The issue is related to an ig cat list XSS in the icegram plugin for WordPress. **Recommendations** For versions prior to 1.10.29, update to version 1.10.29 or later to resolve the issue.