Vishnupriya Ilango

**Name of the Vulnerable Software and Affected Versions** admin-ajax.php (affected versions not specified) **Description** The issue concerns a reflected Cross Site Scripting vulnerability in the `image id` parameter of the AJAX call to the `editimage bwg` action of `admin-ajax.php`. This allows an attacker to insert and execute arbitrary JavaScript, but the attacker must target an authenticated user with permissions to access this component to exploit the issue. **Recommendations** As a temporary workaround, consider restricting access to the `editimage bwg` action of `admin-ajax.php` to minimize the risk of exploitation. Avoid using the `image id` parameter in the affected AJAX endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Brizy WordPress plugin versions prior to 2.4.2 **Description** The issue allows users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks due to the plugin's failure to sanitise and escape some element URLs. **Recommendations** For versions prior to 2.4.2, update to version 2.4.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Brizy WordPress plugin versions prior to 2.4.2 **Description** The issue allows users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks due to the lack of sanitization and escaping of some element content. **Recommendations** For versions prior to 2.4.2, update to version 2.4.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Visual Form Builder WordPress plugin versions prior to 3.0.6 **Description** The issue allows unauthenticated users to see form entries or export them as a CSV file due to a lack of access control on entry form export. This can be done using the "vfb-export" endpoint. **Recommendations** For versions prior to 3.0.6, update to version 3.0.6 or later to resolve the issue. As a temporary workaround, consider restricting access to the "vfb-export" endpoint until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** Visual Form Builder WordPress plugin versions prior to 3.0.8 **Description** The issue allows attackers to make a logged in admin or editor delete and restore arbitrary form entries via CSRF attacks due to the lack of nonce checks. **Recommendations** For versions prior to 3.0.8, update to version 3.0.8 or later to resolve the issue. As a temporary workaround, consider implementing additional CSRF protection measures to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Visual Form Builder WordPress plugin versions prior to 3.0.8 **Description** The issue allows a user with low-level or no privileges to inject a command into the exported CSV file, potentially leading to code execution. This is achieved through CSV injection. **Recommendations** For versions prior to 3.0.8, update to version 3.0.8 or later to resolve the issue. As a temporary workaround, consider restricting access to the CSV export feature until the update is applied.

**Name of the Vulnerable Software and Affected Versions** The Popup Anything WordPress plugin versions prior to 2.0.4 **Description** The issue arises from the plugin's failure to properly escape the `Link Text` and `Button Text` fields of Popup, potentially allowing users with a role as low as Contributor to perform Cross-Site Scripting attacks. This could enable a remote attacker to impact the confidentiality and integrity of protected information. **Recommendations** For versions prior to 2.0.4, update to version 2.0.4 or later to resolve the issue. As a temporary workaround, consider restricting the use of the `Link Text` and `Button Text` fields in the Popup feature to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Simply Gallery Blocks with Lightbox version 2.2.0 and below **Description** A stored cross-site scripting issue has been discovered in the Lightbox functionality of the Simply Gallery Blocks with Lightbox plugin. This issue exists due to insufficient validation of image parameters in meta data, allowing a user with low privileges to execute arbitrary script code within the context of the application. The vulnerability can be exploited by a remote attacker to perform cross-site scripting attacks. **Recommendations** For Simply Gallery Blocks with Lightbox version 2.2.0 and below, consider disabling the Lightbox functionality until a patch is available to prevent exploitation of the stored cross-site scripting vulnerability. Restrict access to the Lightbox module to minimize the risk of exploitation. Avoid using the vulnerable Lightbox functionality in the affected plugin until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** WP Video Lightbox WordPress plugin versions prior to 1.9.3 **Description** The issue exists due to the lack of protection of the webpage structure, allowing a remote attacker to perform Cross-Site Scripting attacks. Users with a role as low as contributor can exploit this issue by not escaping the attributes of the plugin's shortcodes. **Recommendations** For versions prior to 1.9.3, update to version 1.9.3 or later to resolve the issue. As a temporary workaround, consider restricting the use of the plugin's shortcodes to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** YOP Poll WordPress plugin versions prior to 6.3.1 **Description** The issue is related to a stored Cross-Site Scripting problem in the Admin preview module. It arises due to insufficient validation of `question` and `answer` text parameters in the Create Poll module, allowing a user with a role as low as author to execute arbitrary script code within the application context. This could potentially impact the confidentiality and integrity of protected information. **Recommendations** For versions prior to 6.3.1, update to version 6.3.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the Admin preview module and the Create Poll functionality to minimize the risk of exploitation. Avoid using the `question` and `answer` text parameters in the Create Poll module until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** YOP Poll versions prior to 6.3.1 **Description** The issue is related to a stored Cross-Site Scripting vulnerability in the Create Poll - Options module of the YOP Poll WordPress plugin. This vulnerability exists due to insufficient validation of custom label parameters, specifically the `vote button label`, `results link label`, and `back to vote caption label`. This allows a user with a role as low as author to execute arbitrary script code within the context of the application, potentially leading to remote exploitation. **Recommendations** For versions prior to 6.3.1, update to version 6.3.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the Create Poll - Options module or disabling the execution of custom label parameters until a patch is applied. Avoid using the parameters `vote button label`, `results link label`, and `back to vote caption label` in the affected module until the issue is resolved.