CVE-2026-57691
Received Received - Intake

BaseFortify

Vulnerability report for CVE-2026-57691, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-13

Last updated on: 2026-07-13

Assigner: Patchstack

Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Eli Anti-Malware Security and Brute-Force Firewall gotmls allows Reflected XSS.This issue affects Anti-Malware Security and Brute-Force Firewall: from n/a through <= 4.23.89.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-13
Last Modified
2026-07-13
Generated
2026-07-13
AI Q&A
2026-07-13
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
eli anti-malware_security_and_brute-force_firewall to 4.23.89 (inc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-79 The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability is a Cross-Site Scripting (XSS) issue found in the WordPress Anti-Malware Security and Brute-Force Firewall Plugin, versions 4.23.89 and below. It occurs due to improper neutralization of input during web page generation, allowing attackers to inject malicious scripts into the website.

These malicious scripts can execute when visitors access the affected site, potentially causing redirects or displaying unwanted advertisements. Exploitation requires a privileged user to interact with a malicious link or submit a form.

The vulnerability has a medium priority with a CVSS score of 5.8 and is patched in version 4.23.90.

Impact Analysis

This vulnerability can impact you by allowing attackers to inject malicious scripts into your website, which execute when visitors access it.

  • Attackers could redirect visitors to malicious sites.
  • Attackers could display unwanted advertisements or other harmful content.

Such attacks can damage your website's reputation, compromise user trust, and potentially lead to further security issues.

Exploitation requires a privileged user to perform an action like clicking a malicious link or submitting a form.

Detection Guidance

This vulnerability is a Reflected Cross-Site Scripting (XSS) issue in the WordPress Anti-Malware Security and Brute-Force Firewall Plugin versions 4.23.89 and below. Detection typically involves monitoring for suspicious input or script injection attempts in web requests.

Since the vulnerability requires a privileged user to interact with malicious input (e.g., clicking a malicious link or submitting a form), detection can include reviewing web server logs for unusual query parameters or payloads containing script tags or suspicious JavaScript code.

Specific commands are not provided in the available resources, but common approaches include using tools like grep or log analysis to search for suspicious patterns in HTTP requests, for example:

  • grep -iE "<script|javascript:" /var/log/apache2/access.log
  • grep -iE "<script|onerror|onload" /var/log/nginx/access.log

Additionally, web application firewalls (WAFs) or security plugins with XSS detection rules can help identify exploitation attempts.

Mitigation Strategies

The immediate and recommended mitigation step is to update the WordPress Anti-Malware Security and Brute-Force Firewall Plugin to version 4.23.90 or later, where this vulnerability is patched.

Until the update can be applied, Patchstack provides a mitigation rule that can be used to block attacks exploiting this vulnerability.

Additionally, restricting privileged user interactions with untrusted links or forms and monitoring for suspicious activity can help reduce risk.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-57691. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart