CVE-2025-58624
BaseFortify
Publication date: 2025-09-03
Last updated on: 2026-04-23
Assigner: Patchstack
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| patchstack | exchange_rates | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-79 | The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a Stored Cross-Site Scripting (XSS) issue in the WordPress Exchange Rates Plugin versions up to 1.2.5. It allows attackers with contributor-level privileges to inject malicious scripts, such as redirects or advertisements, into web pages generated by the plugin. These scripts execute when visitors access the affected site, potentially compromising user experience or security. [1]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
Detection involves checking if your WordPress site is running Exchange Rates Plugin version 1.2.5 or earlier, as these versions are vulnerable. Since the vulnerability requires contributor-level privileges to inject malicious scripts, monitoring for unexpected script injections or unusual behavior in pages generated by the plugin can help. There are no specific commands provided in the resources, but general steps include scanning for plugin version via WordPress admin or CLI tools, and using server-side malware scanning tools to detect injected scripts. [1]
What immediate steps should I take to mitigate this vulnerability?
The immediate mitigation step is to update the Exchange Rates Plugin to version 1.3.0 or later, where the vulnerability is fixed. Alternatively, Patchstack offers virtual patching (vPatching) to auto-mitigate the vulnerability before official patches are applied. Additionally, if a site is suspected to be compromised, professional incident response and server-side malware scanning are recommended. [1]
How can this vulnerability impact me? :
If exploited, this vulnerability can allow attackers to run malicious scripts on your website, which may lead to unauthorized redirects, display of unwanted advertisements, or other harmful HTML payloads. This can degrade user experience, harm your site's reputation, and potentially expose users to further security risks. However, exploitation requires contributor-level access, and the vulnerability is considered to have a low severity impact with a CVSS score of 6.5. [1]