CVE-2023-5561

Name of the Vulnerable Software and Affected Versions WordPress versions prior to the fixed version Popup Builder WordPress plugin versions through 4.1.15

Description The issue is related to insufficient protection of internal data in the WordPress content management system, allowing remote attackers to gain unauthorized access to protected information. Specifically, WordPress does not properly restrict which user fields are searchable via the REST API, enabling unauthenticated attackers to discern the email addresses of users who have published public posts on an affected website via an Oracle style attack. The Popup Builder WordPress plugin through version 4.1.15 does not sanitize and escape some of its settings, which could allow high-privilege users, such as admins, to perform Stored Cross-Site Scripting attacks.

Recommendations For WordPress, update to a version that contains a fix for this issue. For the Popup Builder WordPress plugin, update to a version later than 4.1.15. As a temporary workaround, consider restricting access to the REST API and sanitizing user input to minimize the risk of exploitation. Restrict access to the vulnerable Popup Builder plugin to minimize the risk of Stored Cross-Site Scripting attacks until the issue is resolved.