Nquangit

**Name of the Vulnerable Software and Affected Versions** Mang Board WP plugin versions up to, and including, 1.8.6 **Description** The issue is related to Stored Cross-Site Scripting due to insufficient input sanitization and output escaping in the `board header` and `board footer` parameters. This allows authenticated attackers with administrator-level access to inject arbitrary web scripts in pages, which will execute when a user accesses an injected page. The issue only affects multi-site installations and installations where `unfiltered html` has been disabled. **Recommendations** For Mang Board WP plugin versions up to, and including, 1.8.6, update to a version later than 1.8.6 to resolve the issue. As a temporary workaround, consider restricting access to the `board header` and `board footer` parameters to minimize the risk of exploitation. Additionally, enabling `unfiltered html` or restricting the plugin's use in multi-site installations may help mitigate the risk until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** WPMasterToolKit (WPMTK) versions up to, and including, 2.5.2 **Description** The issue allows authenticated attackers with Administrator-level access and above to read and modify the contents of arbitrary files on the server, potentially containing sensitive information. This is due to a Directory Traversal vulnerability. **Recommendations** For versions up to, and including, 2.5.2, update to a version higher than 2.5.2 to resolve the issue. As a temporary workaround, consider restricting access to sensitive files on the server to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** WP Editor plugin for WordPress versions up to, and including, 1.2.9.1 **Description** The WP Editor plugin for WordPress is vulnerable to arbitrary file update due to missing file path validation. This makes it possible for authenticated attackers, with Administrator-level access and above, to overwrite arbitrary files on the affected site's server, which may make remote code execution possible assuming the files can be written to by the web server. **Recommendations** For WP Editor plugin for WordPress versions up to, and including, 1.2.9.1, update to a version higher than 1.2.9.1 to resolve the issue. As a temporary workaround, consider restricting access to the plugin's functionality to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** WP Editor plugin for WordPress versions up to, and including, 1.2.9.1 **Description** The issue allows authenticated attackers with Administrator-level access and above to read arbitrary files on the affected site's server, potentially revealing sensitive information. **Recommendations** For WP Editor plugin for WordPress versions up to, and including, 1.2.9.1, update to a version higher than 1.2.9.1 to resolve the issue.