CVE-2025-5703
BaseFortify
Publication date: 2025-06-06
Last updated on: 2025-07-15
Assigner: Wordfence
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| stageshow_project | stageshow | to 10.0.3 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-79 | The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a Stored Cross-Site Scripting (XSS) issue in the StageShow WordPress plugin up to version 10.0.3. It occurs because the plugin does not properly sanitize or escape the 'anchor' parameter, allowing authenticated users with Contributor-level access or higher to inject malicious scripts into pages. These scripts execute whenever any user views the infected page, potentially compromising user data or site integrity.
How can this vulnerability impact me? :
The vulnerability allows attackers with Contributor-level access or above to inject arbitrary scripts into web pages, which execute when other users visit those pages. This can lead to unauthorized actions such as stealing user credentials, session hijacking, defacement, or spreading malware. Since the attack requires authenticated access, it poses a risk within environments where multiple users have editing permissions.
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by identifying if the StageShow WordPress plugin version 10.0.3 or earlier is installed and active on your WordPress site. Since the vulnerability involves Stored Cross-Site Scripting via the 'anchor' parameter, you can check for suspicious or unexpected script injections in pages that use this parameter. There are no specific commands provided in the resources, but general detection steps include reviewing plugin versions via WordPress admin or command line (e.g., wp-cli), and scanning page content for injected scripts related to the 'anchor' parameter. Example command to check plugin version using wp-cli: `wp plugin list --status=active | grep stageshow`. [1, 2]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include disabling or uninstalling the StageShow plugin until a secure version is released, as the plugin has been removed from download availability pending a full security review. Limit Contributor-level and higher user access to trusted users only, as the vulnerability requires authenticated access at Contributor level or above. Additionally, monitor and sanitize any user inputs related to the 'anchor' parameter if possible, and consider applying web application firewall (WAF) rules to block suspicious script injections targeting this parameter. [1]