Auth. (editor+) Stored Cross-Site Scripting (XSS) vulnerability in AGILELOGIX Store Locator WordPress plugin <= 1.4.9 versions.

**Solution**

Fixed 

Update the WordPress Store Locator WordPress plugin to the latest available version (at least 1.4.10).

Found this useful? Thank Abdi Pranata for reporting this vulnerability. Buy a coffee ☕

Abdi Pranata discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Store Locator WordPress Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 1.4.10.

**Other vulnerabilities in this plugin**

 0 present

 3 patched

View all

**Report to Patchstack Alliance bounty platform and earn monthly cash prizes.**

Learn more

CVE-2023-27618: WordPress Store Locator WordPress plugin <= 1.4.9 - Cross Site Scripting (XSS) vulnerability - Patchstack

Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Shazzad Hossain Khan W4 Post List plugin <= 2.4.4 versions.

**Solution**

Fixed 

Update the WordPress W4 Post List plugin to the latest available version (at least 2.4.5).

Found this useful? Thank Abdi Pranata for reporting this vulnerability. Buy a coffee ☕

Abdi Pranata discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress W4 Post List Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 2.4.5.

**Other vulnerabilities in this plugin**

 0 present

 4 patched

View all

**Report to Patchstack Alliance bounty platform and earn monthly cash prizes.**

Learn more

CVE-2023-27413: WordPress W4 Post List plugin <= 2.4.4 - Cross Site Scripting (XSS) vulnerability - Patchstack

Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in mmrs151 Daily Prayer Time plugin <= 2023.05.04 versions.

**Solution**

No fix 

No patched version available.

Found this useful? Thank yuyudhn for reporting this vulnerability. Buy a coffee ☕

yuyudhn discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Daily Prayer Time Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has not been known to be fixed yet.

**Other vulnerabilities in this plugin**

 1 present

 3 patched

View all

**Report to Patchstack Alliance bounty platform and earn monthly cash prizes.**

Learn more

CVE-2023-27631: WordPress Daily Prayer Time plugin <= 2023.05.04 - Cross Site Scripting (XSS) vulnerability - Patchstack

Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Paul Ryley Site Reviews plugin <= 6.5.1 versions.

**Solution**

Fixed 

Update the WordPress Site Reviews plugin to the latest available version (at least 6.6.0).

Found this useful? Thank Rafshanzani Suhada for reporting this vulnerability. Buy a coffee ☕

Rafshanzani Suhada discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Site Reviews Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 6.6.0.

**Other vulnerabilities in this plugin**

 0 present

 7 patched

View all

**Report to Patchstack Alliance bounty platform and earn monthly cash prizes.**

Learn more

CVE-2023-27612: WordPress Site Reviews plugin <= 6.5.1 - Cross Site Scripting (XSS) vulnerability - Patchstack

**Solution**

Fixed 

Update the WordPress Site Reviews plugin to the latest available version (at least 6.6.0).

Found this useful? Thank Mika for reporting this vulnerability. Buy a coffee ☕

Mika discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Site Reviews Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 6.6.0.

**Other vulnerabilities in this plugin**

 0 present

 7 patched

View all

**Report to Patchstack Alliance bounty platform and earn monthly cash prizes.**

Learn more

CVE-2023-27629: WordPress Site Reviews plugin <= 6.5.1 - Cross Site Scripting (XSS) vulnerability - Patchstack


Dell PowerStore versions prior to 3.5 contain an improper verification of cryptographic signature vulnerability. An attacker can trick a high privileged user to install a malicious binary by bypassing the existing cryptographic signature checks



**Vaikutus**

Critical

**Tiedot**

**Third-party Component**

**CVEs**

**More Information**

Apache Shiro

CVE-2022-32532, CVE-2022-40664

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

binutils

CVE-2021-20294, CVE-2021-20284, CVE-2021-20197, CVE-2020-16590, CVE-2020-16591, CVE-2020-16592, CVE-2020-16593, CVE-2020-16599, CVE-2021-3487, CVE-2020-35448, CVE-2020-35493, CVE-2020-35496, CVE-2020-35507

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

Certifi

CVE-2022-23491

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

Grub2

CVE-2022-28735, CVE-2022-28736, CVE-2022-28737

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

java-11-openjdk

CVE-2022-21541, CVE-2022-34169, CVE-2022-21540, CVE-2022-21476, CVE-2022-21443, CVE-2022-21434, CVE-2022-21496, CVE-2022-21426, CVE-2021-35603, CVE-2021-35586, CVE-2021-35567, CVE-2021-35565, CVE-2021-35564, CVE-2021-35561, CVE-2021-35556, CVE-2021-35550, CVE-2021-35559, CVE-2021-35578, CVE-2021-2388, CVE-2021-2369, CVE-2021-2341

July 2022 CPU   
April 2022 CPU   
October 2021 CPU   
July 2021 CPU 

Libtasn1

CVE-2021-46848

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

OpenSSL

CVE-2022-2097, CVE-2022-1292, CVE-2022-2068

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

Oxygen XML WebHelp

CVE-2021-46827

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

Python

CVE-2022-45061

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

slf4j-ext

CVE-2018-8088

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

strongSwan

CVE-2021-45079, CVE-2021-41991, CVE-2021-41990

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

Terracotta Quartz Scheduler

CVE-2019-13990

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

Twisted

CVE-2022-24801, CVE-2022-21712

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

 

**Proprietary Code CVEs**

**Description**

**CVSS Base Score**

**CVSS Vector String**

CVE-2023-32449

Dell PowerStore versions prior to 3.5 contain an improper verification of cryptographic signature vulnerability. An attacker can trick a high privileged user to install a malicious binary by bypassing the existing cryptographic signature checks.

7.2

  
CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H 

**Third-party Component**

**CVEs**

**More Information**

Apache Shiro

CVE-2022-32532, CVE-2022-40664

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

binutils

CVE-2021-20294, CVE-2021-20284, CVE-2021-20197, CVE-2020-16590, CVE-2020-16591, CVE-2020-16592, CVE-2020-16593, CVE-2020-16599, CVE-2021-3487, CVE-2020-35448, CVE-2020-35493, CVE-2020-35496, CVE-2020-35507

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

Certifi

CVE-2022-23491

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

Grub2

CVE-2022-28735, CVE-2022-28736, CVE-2022-28737

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

java-11-openjdk

CVE-2022-21541, CVE-2022-34169, CVE-2022-21540, CVE-2022-21476, CVE-2022-21443, CVE-2022-21434, CVE-2022-21496, CVE-2022-21426, CVE-2021-35603, CVE-2021-35586, CVE-2021-35567, CVE-2021-35565, CVE-2021-35564, CVE-2021-35561, CVE-2021-35556, CVE-2021-35550, CVE-2021-35559, CVE-2021-35578, CVE-2021-2388, CVE-2021-2369, CVE-2021-2341

July 2022 CPU   
April 2022 CPU   
October 2021 CPU   
July 2021 CPU 

Libtasn1

CVE-2021-46848

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

OpenSSL

CVE-2022-2097, CVE-2022-1292, CVE-2022-2068

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

Oxygen XML WebHelp

CVE-2021-46827

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

Python

CVE-2022-45061

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

slf4j-ext

CVE-2018-8088

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

strongSwan

CVE-2021-45079, CVE-2021-41991, CVE-2021-41990

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

Terracotta Quartz Scheduler

CVE-2019-13990

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

Twisted

CVE-2022-24801, CVE-2022-21712

See NVD link below for individual scores for each CVE.   
http://nvd.nist.gov/ 

 

**Proprietary Code CVEs**

**Description**

**CVSS Base Score**

**CVSS Vector String**

CVE-2023-32449

Dell PowerStore versions prior to 3.5 contain an improper verification of cryptographic signature vulnerability. An attacker can trick a high privileged user to install a malicious binary by bypassing the existing cryptographic signature checks.

7.2

  
CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H 

Dell Technologies suosittelee, että kaikki asiakkaat ottavat huomioon sekä CVSS-peruspistemäärän että kaikki asiaankuuluvat väliaikaiset ja ympäristöön liittyvät pisteet, jotka voivat vaikuttaa tietyn tietoturvahaavoittuvuuden mahdolliseen vakavuuteen.

**Tuotteet, joihin asia vaikuttaa ja tilanteen korjaaminen****Versiohistoria**

**Revision**

**Date**

**Description**

1.0

2023-06-20

Initial Release

**Asiaan liittyvät tiedot**

Dell Security Advisories and Notices  
Dell Vulnerability Response Policy  
CVSS Scoring Guide

**Lisätietoja**

The Affected Products and Remediation table above may not be a comprehensive list of all affected supported versions and may be updated as more information becomes available.  

PowerStore 1000T, PowerStore 1200T, PowerStore 3000T, PowerStore 3200T, PowerStore 5000T, PowerStore 500T, PowerStore 5200T, PowerStore 7000T, PowerStore 9000T, PowerStore 9200T

21 kesäk. 2023

CVE-2023-32449: DSA-2023-173: Dell PowerStore Family Security Update for Multiple Vulnerabilities

All versions of the package word-wrap are vulnerable to Regular Expression Denial of Service (ReDoS) due to the usage of an insecure regular expression within the result variable.

Denial of Service (DoS) describes a family of attacks, all aimed at making a system inaccessible to its original and legitimate users. There are many types of DoS attacks, ranging from trying to clog the network pipes to the system by generating a large volume of traffic from many machines (a Distributed Denial of Service - DDoS - attack) to sending crafted requests that cause a system to crash or take a disproportional amount of time to process.

The Regular expression Denial of Service (ReDoS) is a type of Denial of Service attack. Regular expressions are incredibly powerful, but they aren't very intuitive and can ultimately end up making it easy for attackers to take your site down.

Let’s take the following regular expression as an example:

    regex = /A(B|C+)+D/
    

This regular expression accomplishes the following:

*   A The string must start with the letter 'A'
*   (B|C+)+ The string must then follow the letter A with either the letter 'B' or some number of occurrences of the letter 'C' (the + matches one or more times). The + at the end of this section states that we can look for one or more matches of this section.
*   D Finally, we ensure this section of the string ends with a 'D'

The expression would match inputs such as ABBD, ABCCCCD, ABCBCCCD and ACCCCCD

It most cases, it doesn't take very long for a regex engine to find a match:

    $ time node -e '/A(B|C+)+D/.test("ACCCCCCCCCCCCCCCCCCCCCCCCCCCCD")'
    0.04s user 0.01s system 95% cpu 0.052 total
    
    

The entire process of testing it against a 30 characters long string takes around ~52ms. But when given an invalid string, it takes nearly two seconds to complete the test, over ten times as long as it took to test a valid string. The dramatic difference is due to the way regular expressions get evaluated.

Most Regex engines will work very similarly (with minor differences). The engine will match the first possible way to accept the current character and proceed to the next one. If it then fails to match the next one, it will backtrack and see if there was another way to digest the previous character. If it goes too far down the rabbit hole only to find out the string doesn’t match in the end, and if many characters have multiple valid regex paths, the number of backtracking steps can become very large, resulting in what is known as _catastrophic backtracking_.

Let's look at how our expression runs into this problem, using a shorter string: "ACCCX". While it seems fairly straightforward, there are still four different ways that the engine could match those three C's:

1.  CCC
2.  CC+C
3.  C+CC
4.  C+C+C.

The engine has to try each of those combinations to see if any of them potentially match against the expression. When you combine that with the other steps the engine must take, we can use RegEx 101 debugger to see the engine has to take a total of 38 steps before it can determine the string doesn't match.

From there, the number of steps the engine must use to validate a string just continues to grow.

String

Number of C's

Number of steps

ACCCX

3

38

ACCCCX

4

71

ACCCCCX

5

136

ACCCCCCCCCCCCCCX

14

65,553

By the time the string includes 14 C's, the engine has to take over 65,000 steps just to see if the string is valid. These extreme situations can cause them to work very slowly (exponentially related to input size, as shown above), allowing an attacker to exploit this and can cause the service to excessively consume CPU, resulting in a Denial of Service.

CVE-2023-26115: Snyk Vulnerability Database | Snyk

The Abandoned Cart Lite for WooCommerce and Abandoned Cart Pro for WooCommerce plugins for WordPress are vulnerable to Stored Cross-Site Scripting via multiple parameters in versions up to, and including, 5.1.3 and 7.12.0 respectively, due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in user input that will execute on the admin dashboard.

**Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')**

CVE

CVE-2019-25152

CVSS

7.2 (High)

Publicly Published

March 11, 2019

Last Updated

June 22, 2023

**Description**

The Abandoned Cart Lite for WooCommerce and Abandoned Cart Pro for WooCommerce plugins for WordPress are vulnerable to Stored Cross-Site Scripting via multiple parameters in versions up to, and including, 5.1.3 and 7.12.0 respectively, due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in user input that will execute on the admin dashboard.

**References**

*   www.wordfence.com
*   plugins.trac.wordpress.org
*   wpscan.com

**Share**

**2 affected software packages**

Software Type

Plugin

Software Slug

woocommerce-abandoned-cart (view on wordpress.org)

Patched?

Yes

Remediation

Update to version 5.2.0, or a newer patched version

Affected Version

*   < 5.2.0

Patched Version

*   5.2.0

Software Type

Plugin

Software Slug

woocommerce-abandoned-cart-pro

Patched?

Yes

Remediation

Update to version 7.13.0, or a newer patched version

Affected Version

*   <= 7.12.0

Patched Version

*   7.13.0

This record contains material that is subject to copyright.

**Copyright 2012-2023 Defiant Inc.**

**License:** Defiant hereby grants you a perpetual, worldwide, non-exclusive, no-charge, royalty-free, irrevocable copyright license to reproduce, prepare derivative works of, publicly display, publicly perform, sublicense, and distribute this software vulnerability information. Any copy of the software vulnerability information you make for such purposes is authorized provided that you include a hyperlink to this vulnerability record and reproduce Defiant's copyright designation and this license in any such copy. **Read more.**

**Copyright 1999-2023 The MITRE Corporation**

**License:** CVE Usage: MITRE hereby grants you a perpetual, worldwide, non-exclusive, no-charge, royalty-free, irrevocable copyright license to reproduce, prepare derivative works of, publicly display, publicly perform, sublicense, and distribute Common Vulnerabilities and Exposures (CVE®). Any copy you make for such purposes is authorized provided that you reproduce MITRE's copyright designation and this license in any such copy. **Read more.**

Have information to add, or spot any errors? Contact us at wfi-support@wordfence.com so we can make any appropriate adjustments.

All the threat data shared in this database is powered by **Wordfence Intelligence Enterprise**.  
Interested in integrating this data into your platform or network?  
Contact us now to discuss API access to our Wordfence Intelligence Enterprise Data Feeds.

Inquire Now

Want to get notified of the latest vulnerabilities that may affect your WordPress site?  
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation

CVE-2019-25152: Abandoned Cart Lite for WooCommerce < 5.2.0 and Abandoned Cart Pro for WooCommerce < 7.13.0 - Stored Cross-Site Scripting — Wordfence Intelligence

IBM SPSS Modeler on Windows 17.0, 18.0, 18.2.2, 18.3, 18.4, and 18.5 requires the end user to have access to the server SSL key which could allow a local user to decrypt and obtain sensitive information.  IBM X-Force ID:  256117.

CVE-2023-33842: IBM SPSS Modeler information disclosure CVE-2023-33842 Vulnerability Report

IBM Spectrum Protect Backup-Archive Client 8.1.0.0 through 8.1.17.2 may allow a local user to escalate their privileges due to improper access controls.  IBM X-Force ID:  251767.

Source

CVE