Reflected Cross-Site Scripting Vulnerability in AHAthat Plugin for WordPress
CVE-2024-12595

Currently unrated

Key Information:

Vendor: Wordpress
Status: Ahathat Plugin
Vendor: CVE Published:; 2 January 2025

Badges

👾 Exploit Exists🟡 Public PoC

What is CVE-2024-12595?

The AHAthat Plugin for WordPress, up to version 1.6, is vulnerable to a reflected cross-site scripting issue. This vulnerability arises from the failure to properly escape the $_SERVER['REQUEST_URI'] parameter before it is rendered in an output attribute. Attackers can exploit this weakness in older web browsers, potentially leading to the execution of arbitrary scripts in the context of the user's session. Ensuring software is updated and properly secured is essential to mitigate risks associated with this vulnerability.

Affected Version(s)

AHAthat Plugin 0 <= 1.6

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2024-12595 - Proof of Concept

References

https://wpscan.com/vulnerability/7a506438-3106-477f-816d-...

exploitvdb-entrytechnical-description

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Jan 2, 2025
👾
Exploit known to exist
Jan 2, 2025
Vulnerability published
Jan 2, 2025
Vulnerability Reserved
Dec 12, 2024

Credit

Bob Matyas

WPScan

Wordpress