Unauthenticated Stored Cross-Site Scripting Vulnerability in SendPulse Free Web Push Plugin for WordPress
CVE-2024-9184

7.2HIGH

Key Information:

Vendor: Wordpress
Status: Sendpulse Free Web Push
Vendor: CVE Published:; 17 October 2024

Summary

The SendPulse Free Web Push plugin for WordPress is susceptible to a Stored Cross-Site Scripting (XSS) vulnerability in all versions up to 1.3.6. This vulnerability arises from the incorrect implementation of the wp_kses_allowed_html function, enabling unauthenticated attackers to inject arbitrary web scripts into pages. These scripts can be executed whenever users access the affected pages, potentially compromising user data and security.

Affected Version(s)

SendPulse Free Web Push * <= 1.3.6

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://wordpress.org/plugins/sendpulse-web-push/#developers

https://plugins.trac.wordpress.org/browser/sendpulse-web-...

CVSS V3.1

Score:

7.2

Severity:

HIGH

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Oct 17, 2024
Vulnerability Reserved
Sep 25, 2024

Credit

Francesco Carlucci