CVE-2023-0520

Name of the Vulnerable Software and Affected Versions RapidExpCart WordPress plugin versions through 1.0

Description The issue is related to a Stored Cross-Site Scripting vulnerability. It occurs because the url parameter in the "rapidexpcart" endpoint is not properly sanitized and escaped before being stored and outputted back in the page. This could be exploited against high-privilege users, such as admins. Additionally, the lack of CSRF protection allows an attacker to trick a logged-in admin into performing the attack by submitting a hidden form.

Recommendations For RapidExpCart WordPress plugin versions through 1.0, consider disabling the "rapidexpcart" endpoint until a patch is available. Restrict access to the url parameter in the affected endpoint to minimize the risk of exploitation. As a temporary workaround, avoid using the url parameter in the "rapidexpcart" endpoint until the issue is resolved.