CVE-2026-57351
Deferred Deferred - Pending Action

Unauthenticated XSS in HandL UTM Grabber

Vulnerability report for CVE-2026-57351, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-02

Last updated on: 2026-07-02

Assigner: Patchstack

Description

Unauthenticated Cross Site Scripting (XSS) in HandL UTM Grabber <= 2.9.2 versions.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-02
Last Modified
2026-07-02
Generated
2026-07-02
AI Q&A
2026-07-02
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
handl utm_grabber to 2.9.3 (exc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-79 The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

The WordPress HandL UTM Grabber Plugin, versions 2.9.2 and below, is vulnerable to a Cross Site Scripting (XSS) attack. This vulnerability allows attackers to inject malicious scripts into websites, which execute when visitors access the site. The attack can be performed by unauthenticated users and requires user interaction, such as clicking a malicious link or visiting a crafted page.

Impact Analysis

This vulnerability can lead to attackers executing malicious scripts on your website, potentially causing unwanted redirects or displaying harmful content to your visitors. It can be exploited by unauthenticated users and may be used in mass-exploit campaigns targeting many websites. This can damage your website's reputation, compromise user trust, and potentially lead to further security issues.

Detection Guidance

This vulnerability involves Cross Site Scripting (XSS) attacks that require user interaction such as clicking a malicious link or visiting a crafted page. Detection typically involves monitoring for suspicious HTTP requests containing script injections targeting the HandL UTM Grabber plugin (versions 2.9.2 and below).

While specific commands are not provided, network or web server administrators can use tools like web application firewalls (WAFs) or intrusion detection systems (IDS) to look for unusual query parameters or payloads containing JavaScript code in requests to the affected plugin endpoints.

Additionally, reviewing web server logs for requests with suspicious script tags or encoded payloads targeting the plugin can help identify exploitation attempts.

Mitigation Strategies

The immediate recommended step is to update the HandL UTM Grabber plugin to version 2.9.3 or later, where this XSS vulnerability has been patched.

If updating immediately is not possible, applying the mitigation rule provided by Patchstack to block attack attempts is advised until the update can be completed.

Additionally, monitoring and blocking suspicious requests that contain script injections targeting the plugin can help reduce risk.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-57351. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart