PT-2024-39529 · WordPress · Re:Wp
Francesco Carlucci
·
Published
2024-10-04
·
Updated
2024-10-08
·
CVE-2024-9271
CVSS v3.1
6.4
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Re:WP plugin for WordPress version 1.0.1 and earlier
Description
The Re:WP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses the SVG file.
Recommendations
For Re:WP plugin for WordPress version 1.0.1 and earlier, update to a version that addresses the Stored Cross-Site Scripting vulnerability. As a temporary workaround, consider restricting SVG file uploads to minimize the risk of exploitation. Additionally, restrict access to pages that may contain injected scripts to prevent their execution.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Re:Wp