CVE-2025-53222
Reflected XSS in tagDiv Opt-In Builder up to
Publication date: 2026-03-19
Last updated on: 2026-04-23
Assigner: Patchstack
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| tagdiv | opt-in_builder | From 1.0.0 (inc) to 1.7.3 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-79 | The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-53222 is a medium severity Cross Site Scripting (XSS) vulnerability in the WordPress tagDiv Opt-In Builder Plugin versions up to and including 1.7.3.
This vulnerability allows an attacker to inject malicious scripts into web pages generated by the plugin when a privileged user interacts with a crafted link, page, or form.
The injected scripts can execute when site visitors access the compromised pages, potentially causing redirects, displaying unwanted advertisements, or other malicious HTML payloads.
Exploitation requires user interaction by a privileged user but can affect unauthenticated users who visit the compromised pages.
The vulnerability is classified under the OWASP Top 10 category A3: Injection, specifically Cross Site Scripting.
Mitigation involves updating the plugin to version 1.7.4 or later, which contains the patch resolving this issue.
How can this vulnerability impact me? :
This vulnerability can impact you by allowing attackers to inject malicious scripts into your website pages, which can execute when visitors access those pages.
Potential impacts include unauthorized redirects, displaying unwanted advertisements, theft of user data through script execution, and general compromise of website integrity.
Since exploitation requires interaction by a privileged user, it can lead to elevated risks if such users are tricked into triggering the vulnerability.
The vulnerability has a CVSS score of 7.1, indicating a moderate level of danger and a likelihood of exploitation in widespread attacks.
If not mitigated, it can damage user trust, lead to data breaches, and potentially cause reputational harm.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability is a reflected Cross Site Scripting (XSS) issue in the tagDiv Opt-In Builder Plugin versions up to 1.7.3. Detection typically involves monitoring for suspicious user interactions such as clicking malicious links, visiting crafted pages, or submitting forms that inject scripts.
Since the vulnerability requires user interaction and involves injection of malicious scripts, detection can be approached by inspecting web server logs for unusual URL parameters or payloads that contain script tags or suspicious HTML content.
Specific commands are not provided in the available resources, but common approaches include using web application scanners or manual inspection with tools like curl or wget to test for reflected script injection by sending crafted requests to the affected plugin endpoints.
What immediate steps should I take to mitigate this vulnerability?
The primary mitigation step is to update the tagDiv Opt-In Builder Plugin to version 1.7.4 or later, which contains the patch resolving this vulnerability.
If immediate updating is not possible, applying the automatic mitigation rule provided by Patchstack to block attacks targeting this vulnerability is recommended.
Users unable to update immediately should seek assistance from their hosting provider or web developer to implement temporary protections.
Additionally, enabling auto-update features for vulnerable plugins can help ensure timely protection against this and similar vulnerabilities.