CVE-2025-50027
BaseFortify
Publication date: 2025-06-20
Last updated on: 2026-04-23
Assigner: Patchstack
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-79 | The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a Stored Cross-Site Scripting (XSS) issue in the WordPress Login/Signup Popup plugin (versions up to 2.9.4). It allows an attacker with administrator privileges to inject malicious scripts, such as redirects or advertisements, into the website. These scripts then execute when visitors access the site, potentially compromising user experience or security. [1]
How can this vulnerability impact me? :
The vulnerability can impact you by allowing attackers to inject and execute malicious scripts on your website. This can lead to compromised user experience, unauthorized redirects, display of unwanted advertisements, or other harmful HTML payloads. It may also result in security risks such as data theft or session hijacking. Since exploitation is automated and indiscriminate, all vulnerable sites are at risk. [1]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
Detection of this vulnerability involves checking if the WordPress Login/Signup Popup plugin version is up to and including 2.9.4, as these versions are vulnerable. Since the vulnerability allows stored XSS via administrator privileges, monitoring for unusual script injections or unexpected HTML payloads in the plugin's output can help. However, no specific commands or automated plugin-based scanners are recommended because they can be tampered with by malware. Instead, professional incident response or server-side malware scanning is advised for detection. [1]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include applying virtual patching (vPatching) to neutralize the vulnerability without waiting for an official fix, as no patch or fixed version is currently available. Virtual patching provides rapid protection by automatically neutralizing security flaws without impacting performance. Additionally, monitoring for exploitation attempts and seeking professional incident response or server-side malware scanning in case of compromise is recommended. [1]