CVE-2022-0653

moderate-risk
Published 2022-02-24

The Profile Builder – User Profile & User Registration Forms WordPress plugin is vulnerable to Cross-Site Scripting due to insufficient escaping and sanitization of the site_url parameter found in the ~/assets/misc/fallback-page.php file which allows attackers to inject arbitrary web scripts onto a pages that executes whenever a user clicks on a specially crafted link by an attacker. This affects versions up to and including 3.6.1.

Do I need to act?

~
5.7% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
6
CVSS 6.1/10 Medium
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Cozmoslabs

References (4)

Patch https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old...
Exploit https://www.wordfence.com/blog/2022/02/reflected-cross-site-scripting-vulnerabil...
Patch https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old...
Exploit https://www.wordfence.com/blog/2022/02/reflected-cross-site-scripting-vulnerabil...
37
/ 100
moderate-risk
Severity 23/34 · High
Exploitability 9/34 · Low
Exposure 5/34 · Minimal