CVE-2025-14032
Stored XSS in Bold Timeline Lite WordPress Plugin Allows Script Injection
Publication date: 2025-12-12
Last updated on: 2026-04-08
Assigner: Wordfence
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| wordpress | bold_timeline_lite | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-79 | The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. |
Attack-Flow Graph
AI Powered Q&A
How can this vulnerability be detected on my network or system? Can you suggest some commands?
To detect this vulnerability on your system, you should check if the WordPress site is running the Bold Timeline Lite plugin version 1.2.7 or earlier. Since the vulnerability involves Stored Cross-Site Scripting via the 'title' parameter in the 'bold_timeline_group' shortcode, you can look for usage of this shortcode in posts or pages and inspect if the 'title' parameter contains suspicious or malicious scripts. There are no specific commands provided in the resources, but general detection steps include: 1) Searching the WordPress database for instances of the shortcode [bold_timeline_group] with a 'title' parameter containing suspicious script tags or JavaScript code. 2) Using WP-CLI commands to search post content, for example: wp post list --post_type=page,post --field=ID | xargs -I % wp post get % --field=post_content | grep -i '\[bold_timeline_group.*title=.*<script' 3) Monitoring HTTP requests and responses for injected scripts related to this shortcode. 4) Reviewing user roles and permissions to identify if Contributor-level or higher users have added suspicious content. Since no explicit detection commands are provided in the resources, these general approaches are recommended. [2]
Can you explain this vulnerability to me?
This vulnerability is a Stored Cross-Site Scripting (XSS) issue in the Bold Timeline Lite WordPress plugin. It occurs via the 'title' parameter in the 'bold_timeline_group' shortcode due to insufficient input sanitization and output escaping. Authenticated users with Contributor-level access or higher can inject malicious scripts that execute when other users view the affected pages.
How can this vulnerability impact me? :
The vulnerability allows attackers with Contributor-level access or above to inject arbitrary scripts into pages, which execute when other users access those pages. This can lead to unauthorized actions, data theft, session hijacking, or defacement of the website, impacting the security and integrity of the affected WordPress site.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, immediately update the Bold Timeline Lite plugin to a version later than 1.2.7 where the issue is fixed. Additionally, restrict Contributor-level access to trusted users only, and consider implementing input sanitization and output escaping measures for the 'title' parameter in the 'bold_timeline_group' shortcode to prevent stored cross-site scripting.