CVE-2025-5754
BaseFortify
Publication date: 2025-07-18
Last updated on: 2025-07-22
Assigner: Wordfence
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| wordpress | useful_tab_block | 1.3.2 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-79 | The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
The vulnerability in the Useful Tab Block β Responsive & AMP-Compatible WordPress plugin (up to version 1.3.2) is a Stored Cross-Site Scripting (XSS) issue. It occurs via the 'className' parameter due to insufficient input sanitization and output escaping. This allows authenticated users with Contributor-level access or higher to inject arbitrary web scripts into pages. These scripts execute whenever any user accesses the injected page, potentially compromising user security.
How can this vulnerability impact me? :
This vulnerability can impact you by allowing attackers with Contributor-level access or higher to inject malicious scripts into your website pages. These scripts execute in the context of users visiting the affected pages, potentially leading to theft of user data, session hijacking, defacement, or other malicious activities. Since the vulnerability is a Stored XSS, the malicious code persists on the site and affects all users who view the injected content.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
This vulnerability can negatively affect compliance with standards like GDPR and HIPAA because it may lead to unauthorized access or disclosure of personal or sensitive data through malicious script execution. Stored Cross-Site Scripting vulnerabilities can facilitate data breaches or compromise user privacy, which are violations of these regulations' requirements for protecting user data and ensuring secure processing.
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by identifying if the WordPress site is using the 'Useful Tab Block β Responsive & AMP-Compatible' plugin version 1.3.2 or earlier. Since the vulnerability involves stored Cross-Site Scripting via the 'className' parameter, detection may involve reviewing plugin versions and scanning for injected scripts in pages where authenticated users with Contributor-level access or higher can add content. Specific commands are not provided in the available resources. [1, 2]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include disabling or uninstalling the 'Useful Tab Block β Responsive & AMP-Compatible' plugin if it is installed and running version 1.3.2 or earlier. Since the plugin has been temporarily closed and is unavailable for download pending a full review, avoid using it until a patched version is released. Additionally, restrict Contributor-level access to trusted users only to reduce risk. [1]