CVE-2025-58834
BaseFortify
Publication date: 2025-09-05
Last updated on: 2026-04-23
Assigner: Patchstack
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| gugu | short.io | * |
| wordpress | short.io_plugin | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-79 | The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a Cross Site Scripting (XSS) issue in the WordPress short.io plugin up to version 2.4.0. It allows attackers with contributor-level privileges to inject malicious scriptsβsuch as redirects, advertisements, or other HTML payloadsβinto websites using the plugin. These scripts execute when visitors access the affected site, potentially compromising user interactions. The vulnerability is DOM-Based XSS and falls under the OWASP Top 10 category A3: Injection. [1]
How can this vulnerability impact me? :
This vulnerability can impact you by allowing attackers to execute malicious scripts on your website, which can lead to unauthorized redirects, display of unwanted advertisements, or other harmful HTML content. This can degrade user trust, harm your site's reputation, and potentially lead to further security issues. Exploitation requires contributor-level access, and no official patch is currently available, though virtual patching is offered as a mitigation. [1]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
Detection of this vulnerability involves monitoring for injected malicious scripts such as redirects, advertisements, or other HTML payloads in websites using the short.io plugin up to version 2.4.0. Since exploitation requires contributor-level privileges, reviewing recent changes or contributions to the site for suspicious scripts is recommended. There are no specific commands provided for detection. Users are advised not to rely solely on plugin-based malware scanners and to seek professional incident response if compromise is suspected. [1]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include applying virtual patching (vPatching) provided by Patchstack, which auto-mitigates the vulnerability without requiring an official fix and without performance loss. Users should avoid relying solely on plugin-based malware scanners and consider professional incident response if their sites are compromised. Since no official patch or fixed plugin version is currently available, virtual patching is the recommended rapid protection method. [1]