CVE-2026-57399
Received Received - Intake

BaseFortify

Vulnerability report for CVE-2026-57399, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-13

Last updated on: 2026-07-13

Assigner: Patchstack

Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Proxy &amp; VPN Blocker Proxy &amp; VPN Blocker proxy-vpn-blocker allows Stored XSS.This issue affects Proxy &amp; VPN Blocker: from n/a through <= 3.5.8.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-13
Last Modified
2026-07-13
Generated
2026-07-13
AI Q&A
2026-07-13
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
patchstack proxy_vpn_blocker From 3.0.0 (inc) to 3.5.8 (inc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-79 The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

CVE-2026-57399 is a Cross Site Scripting (XSS) vulnerability found in the WordPress Proxy & VPN Blocker Plugin versions 3.5.8 and below.

This vulnerability allows attackers to inject malicious scripts into websites, which then execute when visitors access the affected site.

Exploitation requires user interaction, such as clicking a malicious link or visiting a specially crafted page.

Impact Analysis

The vulnerability can lead to attackers executing malicious scripts on your website, potentially compromising user data and site integrity.

Since the vulnerability is a Stored XSS, malicious scripts can persist on the site and affect multiple visitors.

This can result in unauthorized actions performed on behalf of users, data theft, or site defacement.

The risk is considered moderate but could be exploited in large-scale attacks targeting many websites.

Users are advised to update to version 3.5.9 or apply mitigation rules to block attacks until updating.

Detection Guidance

This vulnerability is a Stored Cross Site Scripting (XSS) issue in the Proxy & VPN Blocker WordPress plugin versions 3.5.8 and below. Detection typically involves identifying malicious script injections in web pages generated by the plugin.

While no specific commands are provided in the resources, common detection methods include scanning web pages for suspicious script tags or payloads, monitoring HTTP requests for unusual input patterns, and using web vulnerability scanners that detect XSS vulnerabilities.

  • Use a web vulnerability scanner such as OWASP ZAP or Burp Suite to scan your website for XSS vulnerabilities.
  • Manually inspect web pages generated by the Proxy & VPN Blocker plugin for unexpected or suspicious JavaScript code.
  • Monitor HTTP traffic for unusual input parameters that might contain script tags or encoded payloads.
Mitigation Strategies

The immediate recommended step is to update the Proxy & VPN Blocker plugin to version 3.5.9 or later, which contains the patch for this vulnerability.

Until you can update, you can apply Patchstack’s mitigation rule to block attacks targeting this vulnerability.

  • Update the Proxy & VPN Blocker plugin to version 3.5.9 or newer immediately.
  • Use Patchstack’s mitigation rules to block exploit attempts if updating is not immediately possible.
  • Educate users to avoid clicking on suspicious links or visiting untrusted pages that could trigger the XSS.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-57399. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart