CVE-2023-5530

low-risk
Published 2023-11-06

The Ninja Forms Contact Form WordPress plugin before 3.6.34 does not sanitize and escape its label fields, which could allow high privilege users such as admin to perform Stored XSS attacks. Only users with the unfiltered_html capability can perform this, and such users are already allowed to use JS in posts/comments etc however the vendor acknowledged and fixed the issue

Do I need to act?

~
1.5% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
4
CVSS 4.8/10 Medium
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Ninjaforms

References (4)

Release Notes https://ninjaforms.com/blog/saturday-drive-x-edition/
Exploit https://wpscan.com/vulnerability/a642f313-cc3e-4d75-b207-1dceb6a7fbae
Release Notes https://ninjaforms.com/blog/saturday-drive-x-edition/
Exploit https://wpscan.com/vulnerability/a642f313-cc3e-4d75-b207-1dceb6a7fbae
28
/ 100
low-risk
Severity 19/34 · Moderate
Exploitability 4/34 · Minimal
Exposure 5/34 · Minimal