Stored Cross-Site Scripting in Podcast Subscribe Buttons Plugin for WordPress
CVE-2023-5308

5.4MEDIUM

Key Information:

Vendor: Wordpress
Status: Podcast Subscribe Buttons
Vendor: CVE Published:; 20 October 2023

Summary

The Podcast Subscribe Buttons plugin for WordPress features a vulnerability that allows for Stored Cross-Site Scripting attacks. This flaw arises from lack of proper input sanitization and output escaping for user-supplied attributes through the 'podcast_subscribe' shortcode in versions up to and including 1.4.8. Authenticated users with contributor-level and higher permissions can exploit this vulnerability by injecting malicious scripts into pages. These scripts will execute when other users access the compromised content, potentially compromising the security of those users and the integrity of the website.

Affected Version(s)

Podcast Subscribe Buttons * <= 1.4.8

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://plugins.trac.wordpress.org/browser/podcast-subscr...

https://plugins.trac.wordpress.org/changeset/2973904/podc...

CVSS V3.1

Score:

5.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Oct 20, 2023
Vulnerability Reserved
Sep 29, 2023

Credit

Lana Codes