Krishna Harsha Kondaveeti

**Name of the Vulnerable Software and Affected Versions** Find and Replace All WordPress plugin versions prior to 1.3 **Description** The issue arises from the plugin not sanitizing and escaping some parameters from its setting page before outputting them back to the user, leading to a Reflected Cross-Site Scripting issue. **Recommendations** For versions prior to 1.3, update to version 1.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the plugin's setting page to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Find and Replace All WordPress plugin versions prior to 1.3 **Description** The issue is related to the lack of a CSRF check when replacing strings, which could allow attackers to make a logged admin replace arbitrary strings in database tables via a CSRF attack. **Recommendations** For versions prior to 1.3, update to version 1.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the string replacement functionality to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Student Result or Employee Database WordPress plugin versions prior to 1.7.5 **Description** The issue allows attackers to make logged-in users with a role as low as contributor to add, edit, and delete students via CSRF attacks due to the lack of CSRF in its AJAX actions. Furthermore, the lack of sanitization and escaping could also lead to Stored Cross-Site scripting. **Recommendations** For versions prior to 1.7.5, update to version 1.7.5 or later to resolve the issue. As a temporary workaround, consider restricting access to the AJAX actions to minimize the risk of exploitation. Additionally, restrict the role of contributors to prevent them from adding, editing, or deleting students until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** VR Calendar WordPress plugin versions prior to 2.3.3 **Description** The issue allows any user to execute arbitrary PHP functions on the site. This can lead to unauthorized access and potential code execution. **Recommendations** For versions prior to 2.3.3, update to version 2.3.3 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** DW Promobar WordPress plugin versions 1.0.0 through 1.0.4 **Description** The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks when the unfiltered html capability is disallowed, for example in a multisite setup. This is due to the plugin not sanitizing and escaping some of its settings. **Recommendations** For DW Promobar WordPress plugin versions 1.0.0 through 1.0.4, consider updating to a version that addresses this issue, as the current version does not properly sanitize settings, posing a risk of Stored Cross-Site Scripting attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Better Tag Cloud WordPress plugin versions prior to 0.99.6 **Description** The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks when the unfiltered html capability is disallowed, for example in a multisite setup. This is due to the plugin not sanitizing and escaping some of its settings. **Recommendations** For Better Tag Cloud WordPress plugin versions prior to 0.99.6, update to version 0.99.6 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Google Maps Anywhere WordPress plugin versions 1.2.6.3 and earlier **Description** The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks when the unfiltered html capability is disallowed, for example in a multisite setup. This is due to the plugin not sanitizing and escaping its settings. **Recommendations** For Google Maps Anywhere WordPress plugin versions 1.2.6.3 and earlier, consider updating to a version that addresses this issue, as the current version does not sanitize and escape its settings, posing a risk of Stored Cross-Site Scripting attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** mTouch Quiz WordPress plugin versions 3.1.3 and earlier **Description** The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks when the unfiltered html capability is disallowed, for example in a multisite setup. This is due to the plugin not sanitizing and escaping some of its settings. **Recommendations** For mTouch Quiz WordPress plugin versions 3.1.3 and earlier, update to a version later than 3.1.3 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** WP DS Blog Map WordPress plugin versions prior to 3.1.4 **Description** The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks when the unfiltered html capability is disallowed, for example in a multisite setup. This is due to the plugin not sanitizing and escaping some of its settings. **Recommendations** For WP DS Blog Map WordPress plugin versions prior to 3.1.4, update to version 3.1.4 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Auto More Tag WordPress plugin versions prior to 4.0.1 **Description** The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks when the unfiltered html capability is disallowed, for example in a multisite setup. This is due to the plugin not sanitizing and escaping some of its settings. **Recommendations** For Auto More Tag WordPress plugin versions prior to 4.0.1, update to version 4.0.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** The LinkedIn Company Updates WordPress plugin versions 1.5.3 and earlier **Description** The issue allows high privilege users, such as admin, to perform cross-Site Scripting attacks due to the plugin not sanitising and escaping its settings. This is possible even when the unfiltered html capability is disallowed. **Recommendations** For versions 1.5.3 and earlier, update to a version that properly sanitises and escapes its settings to prevent cross-Site Scripting attacks. As a temporary workaround, consider restricting the use of the plugin's settings by high privilege users until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Google Places Reviews WordPress plugin versions prior to 2.0.0 **Description** The issue arises from the Google Places Reviews WordPress plugin not properly escaping its Google API key setting, which is reflected on the site's administration panel. In a multisite WordPress configuration, a malicious administrator could exploit this to trick super-administrators into viewing a booby-trapped payload, potentially leading to account takeover. **Recommendations** For versions prior to 2.0.0, update to version 2.0.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the administration panel to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** No Future Posts WordPress plugin versions 1.4 and earlier **Description** The issue allows high privilege users, such as admins, to perform Cross-Site Scripting attacks when unfiltered html is disallowed due to the plugin not escaping its settings. **Recommendations** For No Future Posts WordPress plugin versions 1.4 and earlier, update to a version that properly escapes its settings to prevent Cross-Site Scripting attacks.

**Name of the Vulnerable Software and Affected Versions** The Simple Real Estate Pack WordPress plugin versions 1.4.8 and earlier **Description** The issue allows high privilege users, such as admin, to perform Stored Cross-Site Scripting attacks when the unfiltered html capability is disallowed, due to the plugin not sanitising and escaping some of its settings. **Recommendations** For versions 1.4.8 and earlier, update to a version that addresses the sanitisation and escaping of settings to prevent Stored Cross-Site Scripting attacks. As a temporary workaround, consider restricting the `unfiltered html` capability to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** The Easy FAQ with Expanding Text WordPress plugin versions 3.2.8.3.1 and earlier **Description** The issue allows high privilege users to perform Cross-Site Scripting attacks when unfiltered html is disallowed, due to the plugin not sanitising and escaping its settings. **Recommendations** For versions 3.2.8.3.1 and earlier, update to a version that properly sanitises and escapes settings to prevent Cross-Site Scripting attacks. As a temporary workaround, consider restricting access to the plugin's settings to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Call&Book Mobile Bar WordPress plugin versions 1.2.2 and earlier **Description** The issue allows high privilege users, such as admins, to perform Cross-Site Scripting attacks, even when unfiltered html is disallowed, due to the plugin not sanitizing and escaping some of its settings. **Recommendations** For Call&Book Mobile Bar WordPress plugin versions 1.2.2 and earlier, update to a version that properly sanitizes and escapes its settings to prevent Cross-Site Scripting attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** HPB Dashboard WordPress plugin versions 1.3.1 and earlier **Description** The issue allows high privilege users, such as admins, to perform Cross-Site Scripting attacks, even when unfiltered html is disallowed, due to the plugin not sanitizing and escaping some of its settings. **Recommendations** For HPB Dashboard WordPress plugin versions 1.3.1 and earlier, update to a version later than 1.3.1 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Amazon Link WordPress plugin versions 3.2.10 and earlier **Description** The issue allows high privilege users, such as admins, to perform Cross-Site Scripting attacks, even when unfiltered html is disallowed, due to the plugin not sanitizing and escaping some of its settings. **Recommendations** For Amazon Link WordPress plugin versions 3.2.10 and earlier, update to a version later than 3.2.10 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** WP YouTube Live WordPress plugin versions prior to 1.8.3 **Description** The issue allows high privilege users, such as admins, to perform Cross-Site Scripting attacks. This is possible because the plugin does not properly validate, sanitize, and escape various settings, even when unfiltered html is disallowed. **Recommendations** For WP YouTube Live WordPress plugin versions prior to 1.8.3, update to version 1.8.3 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Social Stickers WordPress plugin versions 2.2.9 and earlier **Description** The issue is related to the lack of CSRF checks and improper escaping of certain fields when updating Social Network settings. This could allow attackers to make a logged-in admin change these settings, leading to Stored Cross-Site Scripting issues. **Recommendations** For Social Stickers WordPress plugin versions 2.2.9 and earlier, update to a version that includes CSRF checks and proper escaping of fields to prevent Stored Cross-Site Scripting issues. At the moment, there is no information about a newer version that contains a fix for this vulnerability.