Can you explain this vulnerability to me?

This vulnerability is a Stored Cross-Site Scripting (XSS) issue in the Welcart e-Commerce plugin for WordPress, affecting all versions up to and including 2.11.20. It occurs because the plugin does not properly sanitize input or escape output in its settings. Authenticated users with editor-level permissions or higher can inject malicious scripts that will execute whenever another user accesses the affected page. This vulnerability only impacts multi-site installations or installations where the unfiltered_html capability is disabled.

Useful 0 Not Useful 0

How can this vulnerability impact me? :

The vulnerability allows attackers with certain permissions to inject malicious scripts that execute in other users' browsers when they visit the compromised pages. This can lead to unauthorized actions performed on behalf of users, theft of sensitive information such as cookies or session tokens, and potential compromise of user accounts or site integrity. Since it requires editor-level access, it could be exploited by insiders or compromised accounts with elevated privileges.

Useful 0 Not Useful 0

What immediate steps should I take to mitigate this vulnerability?

To mitigate this vulnerability, update the Welcart e-Commerce plugin for WordPress to a version later than 2.11.20 where the issue is fixed. Additionally, review user permissions to limit editor-level and higher access, especially in multi-site installations or where unfiltered_html is disabled. Consider enabling input sanitization and output escaping measures if possible.

Useful 0 Not Useful 0