Stored Cross-Site Scripting Vulnerability in User Profile Builder Plugin for WordPress
CVE-2025-8896

6.4MEDIUM

Key Information:

Vendor

WordPress
Status
User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor
Vendor
CVE Published:
16 August 2025

What is CVE-2025-8896?

The User Profile Builder plugin, utilized for facilitating user registration and profile management on WordPress sites, contains a vulnerability in the 'gdpr_communication_preferences[]' parameter. This vulnerability arises from inadequate input sanitization and output escaping, thereby allowing authenticated users with Subscriber-level access and up to inject harmful web scripts into web pages. The malicious scripts can execute when other users access affected pages. This issue is particularly significant when the GDPR Communication Preferences module is activated and if at least one preference field is included in the profile edit form.

Affected Version(s)

User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor * <= 3.14.3

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...
https://plugins.trac.wordpress.org/changeset?sfp_email=&s...

CVSS V3.1

Score:
6.4
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Jessie Irelan
.