Cross-Site Request Forgery (CSRF) leading to Stored Cross-Site Scripting (XSS) vulnerability in realmag777 WOLF – WordPress Posts Bulk Editor and Manager Professional plugin <= 1.0.6 versions.

**Solution**

 Fixed

Update the WordPress WOLF plugin to the latest available version (at least 1.0.7).

Junsu Yeo discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress WOLF Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 1.0.7.

**Other vulnerabilities in this plugin**

 0 present

 2 patched

View all

**WordPress plugin developer?**

Start a free security program for your WordPress plugins or request an audit.

Apply for MVDP

**Security researcher?**

Report to Patchstack Alliance bounty platform and earn monthly cash prizes.

Learn more

CVE-2023-31218: WordPress WOLF plugin <= 1.0.6 - Cross Site Scripting (XSS) via CSRF vulnerability - Patchstack

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in David Artiss Plugins List plugin <= 2.5 versions.

**Solution**

 Fixed

Update the WordPress Plugins List plugin to the latest available version (at least 2.5.1).

Found this useful? Thank Yuki Haruma for reporting this vulnerability. Buy a coffee ☕

Yuki Haruma discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Plugins List Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 2.5.1.

**No other known vulnerabilities for this plugin**Report

**WordPress plugin developer?**

Start a free security program for your WordPress plugins or request an audit.

Apply for MVDP

**Security researcher?**

Report to Patchstack Alliance bounty platform and earn monthly cash prizes.

Learn more

CVE-2023-31232: WordPress Plugins List plugin <= 2.5 - Cross Site Scripting (XSS) vulnerability - Patchstack

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in CreativeMindsSolutions CM On Demand Search And Replace plugin <= 1.3.0 versions.

**Solution**

 Fixed

Update the WordPress CM On Demand Search And Replace plugin to the latest available version (at least 1.3.1).

Found this useful? Thank Abdi Pranata for reporting this vulnerability. Buy a coffee ☕

Abdi Pranata discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress CM On Demand Search And Replace Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 1.3.1.

**Other vulnerabilities in this plugin**

 0 present

 2 patched

View all

**WordPress plugin developer?**

Start a free security program for your WordPress plugins or request an audit.

Apply for MVDP

**Security researcher?**

Report to Patchstack Alliance bounty platform and earn monthly cash prizes.

Learn more

CVE-2023-31228: WordPress CM On Demand Search And Replace plugin <= 1.3.0 - Cross Site Scripting (XSS) vulnerability - Patchstack

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Lauri Karisola / WP Trio Stock Sync for WooCommerce plugin <= 2.4.0 versions.

**Solution**

 Fixed

Update the WordPress Stock Sync for WooCommerce plugin to the latest available version (at least 2.4.1).

Ivy (TOOR, LISA) discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Stock Sync for WooCommerce Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 2.4.1.

**Other vulnerabilities in this plugin**

 0 present

 2 patched

View all

**WordPress plugin developer?**

Start a free security program for your WordPress plugins or request an audit.

Apply for MVDP

**Security researcher?**

Report to Patchstack Alliance bounty platform and earn monthly cash prizes.

Learn more

CVE-2023-31094: WordPress Stock Sync for WooCommerce plugin <= 2.4.0 - Reflected Cross Site Scripting (XSS) vulnerability - Patchstack

A vulnerability, which was classified as critical, has been found in NBS&HappySoftWeChat 1.1.6. Affected by this issue is some unknown functionality. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-237512.

*   *   Actions
        
        Automate any workflow
        
    *   Packages
        
        Host and manage packages
        
    *   Security
        
        Find and fix vulnerabilities
        
    *   Codespaces
        
        Instant dev environments
        
    *   Copilot
        
        Write better code with AI
        
    *   Code review
        
        Manage code changes
        
    *   Issues
        
        Plan and track work
        
    *   Discussions
        
        Collaborate outside of code
        
    

*   *   GitHub Sponsors
        
        Fund open source developers
        
    
    *   The ReadME Project
        
        GitHub community articles
        
    
*   Pricing

**Search code, repositories, users, issues, pull requests...**

**Provide feedback**

**Saved searches****Use saved searches to filter your results more quickly**

Sign up

CVE-2023-4409: cve/upload/upload.md at main · ApricityXX/cve

A vulnerability classified as critical was found in Codecanyon Credit Lite 1.5.4. Affected by this vulnerability is an unknown functionality of the file /portal/reports/account_statement of the component POST Request Handler. The manipulation of the argument date1/date2 leads to sql injection. The attack can be launched remotely. The associated identifier of this vulnerability is VDB-237511.

CVE-2023-4407

OS command injection vulnerability in WAB-S600-PS all versions, and WAB-S300 all versions allows an authenticated user to execute an arbitrary OS command by sending a specially crafted request.

Published:2023/08/10  Last Updated:2023/08/10

**Overview**

Multiple network devices provided by ELECOM CO.,LTD. and LOGITEC CORPORATION contain multiple vulnerabilities.

**Products Affected**

**CVE-2023-32626**

*   LAN-W300N/RS all versions
*   LAN-W300N/PR5 all versions

**CVE-2023-35991**

*   LAN-W300N/DR all versions
*   LAN-WH300N/DR all versions
*   LAN-W300N/P all versions
*   LAN-WH450N/GP all versions
*   LAN-WH300AN/DGP all versions
*   LAN-WH300N/DGP all versions
*   LAN-WH300ANDGPE all versions

**CVE-2023-38132**

*   LAN-W451NGR all versions

**CVE-2023-38576、CVE-2023-39445**

*   LAN-WH300N/RE all versions

**CVE-2023-39454**

*   WRC-X1800GS-B v1.13 and earlier
*   WRC-X1800GSA-B v1.13 and earlier
*   WRC-X1800GSH-B v1.13 and earlier

**CVE-2023-39455**

*   WRC-600GHBK-A all versions
*   WRC-1467GHBK-A all versions
*   WRC-1900GHBK-A all versions
*   WRC-733FEBK2-A all versions
*   WRC-F1167ACF2 all versions
*   WRC-1467GHBK-S all versions
*   WRC-1900GHBK-S all versions

**CVE-2023-39944**

*   WRC-F1167ACF all versions
*   WRC-1750GHBK all versions

**CVE-2023-40069**

*   WRC-F1167ACF all versions
*   WRC-1750GHBK all versions
*   WRC-1167GHBK2 all versions
*   WRC-1750GHBK2-I all versions
*   WRC-1750GHBK-E all versions

**CVE-2023-40072**

*   WAB-S600-PS all versions
*   WAB-S300 all versions

**Description**

Multiple network devices provided by ELECOM CO.,LTD. and LOGITEC CORPORATION contain multiple vulnerabilities listed below.

*   **Hidden Functionality (CWE-912)** - CVE-2023-32626, CVE-2023-35991, CVE-2023-39445
    
    CVSS v3
    
    CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
    
    **Base Score: 8.8**
    
    CVSS v2
    
    AV:A/AC:L/Au:N/C:P/I:P/A:P
    
    **Base Score: 5.8**
    
*   **Telnet service access restriction failure (CWE-284)** - CVE-2023-38132
    
    CVSS v3
    
    CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
    
    **Base Score: 8.8**
    
    CVSS v2
    
    AV:A/AC:L/Au:N/C:P/I:P/A:P
    
    **Base Score: 5.8**
    
*   **Hidden Functionality (CWE-912)** - CVE-2023-38576
    
    CVSS v3
    
    CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
    
    **Base Score: 6.8**
    
    CVSS v2
    
    AV:A/AC:L/Au:S/C:P/I:P/A:P
    
    **Base Score: 5.2**
    
*   **Buffer overflow (CWE-120)** - CVE-2023-39454
    
    CVSS v3
    
    CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
    
    **Base Score: 8.8**
    
    CVSS v2
    
    AV:A/AC:L/Au:N/C:C/I:C/A:C
    
    **Base Score: 8.3**
    
*   **OS Command Injection (CWE-78)** - CVE-2023-39455, CVE-2023-40072
    
    CVSS v3
    
    CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
    
    **Base Score: 6.8**
    
    CVSS v2
    
    AV:A/AC:L/Au:S/C:P/I:P/A:P
    
    **Base Score: 5.2**
    
*   **OS Command Injection (CWE-78)** - CVE-2023-39944, CVE-2023-40069
    
    CVSS v3
    
    CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
    
    **Base Score: 8.8**
    
    CVSS v2
    
    AV:A/AC:L/Au:N/C:P/I:P/A:P
    
    **Base Score: 5.8**
    

**Impact**

*   An unauthenticated attacker may log in to the product's certain management console and execute arbitrary OS commands - CVE-2023-32626, CVE-2023-35991
*   An unauthenticated attacker may log in to telnet service - CVE-2023-38132
*   An authenticated user may execute arbitrary OS commands on a certain management console - CVE-2023-38576
*   An unauthenticated attacker may execute arbitrary code by sending a specially crafted file to the product's certain management console - CVE-2023-39445
*   An unauthenticated attacker may execute arbitrary code - CVE-2023-39454
*   An authenticated user may execute an arbitrary OS command by sending a specially crafted request - CVE-2023-39455, CVE-2023-40072
*   An attacker who can access the product may execute an arbitrary OS command by sending a specially crafted request - CVE-2023-39944, CVE-2023-40069

**Solution**

**Update the firmware**  
For WRC-X1800GS-B, WRC-X1800GSA-B, and WRC-X1800GSH-B, update the firmware to the latest version according to the information provided by the developer.

**Apply the workaround**  
For WAB-S600-PS and WAB-S300, applying the following workarounds may mitigate the impact of CVE-2023-40072 issue.

*   Change the setting page's login password
*   Do not access other websites while logged in to the setting page
*   Close the web browser after finishing operations on the setting page
*   Delete the password for the setting page saved in the web browser

**Stop using the products**  
According to the developer, the rest of the affected products are no longer supported. Stop using the vulnerable products and consider switching to alternatives.

**Vendor Status**

**References**

**JPCERT/CC Addendum**

**Vulnerability Analysis by JPCERT/CC**

**Credit**

Chuya Hayakawa of 00One, Inc. reported this vulnerability to JPCERT/CC.  
JPCERT/CC coordinated with the developer.

**Other Information**

**Update History**

2023/08/10

ELECOM CO.,LTD. update status

CVE-2023-40072: Multiple vulnerabilities in ELECOM and LOGITEC network devices

Proself Enterprise/Standard Edition Ver5.61 and earlier, Proself Gateway Edition Ver1.62 and earlier, and Proself Mail Sanitize Edition Ver1.07 and earlier allow a remote authenticated attacker with an administrative privilege to execute arbitrary OS commands.

Published:2023/08/18  Last Updated:2023/08/18

**Overview**

Proself provided by North Grid Corporation contains multiple vulnerabilities.

**Products Affected**

*   Proself Enterprise/Standard Edition Ver5.61 and earlier
*   Proself Gateway Edition Ver1.62 and earlier
*   Proself Mail Sanitize Edition Ver1.07 and earlier

**Description**

Proself provided by North Grid Corporation is an online storage server software. Proself contains multiple vulnerabilities listed below.

*   **Improper authentication (CWE-287)** - CVE-2023-39415
    
    CVSS v3
    
    CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
    
    **Base Score: 7.5**
    
    CVSS v2
    
    AV:N/AC:L/Au:N/C:P/I:N/A:N
    
    **Base Score: 5.0**
    
*   **OS command injection (CWE-78)** - CVE-2023-39416
    
    CVSS v3
    
    CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
    
    **Base Score: 7.2**
    
    CVSS v2
    
    AV:N/AC:L/Au:S/C:P/I:P/A:P
    
    **Base Score: 6.5**
    

The developer states that attacks exploiting these vulnerabilities have been observed.

**Impact**

*   A remote unauthenticated attacker may log in to the product's Control Panel and perform an unintended operation - CVE-2023-39415
*   An arbitrary OS command may be executed by an attacker who can log in to the product with an administrative privilege - CVE-2023-39416

**Solution**

**Update the Software**  
Update the software to the latest version according to the information provided by the developer.

**Apply the workaround**  
Until the software is updated, the following workaround are recommended to mitigate the impact of the vulnerabilities.

*   Delete the following two files under "Proself install folder/webapps/proself/WEB-INF/xml/process/external/admin"
    *   downloadhistory.xml
    *   setclustermyid.xml

**Vendor Status**

**References**

**JPCERT/CC Addendum**

**Vulnerability Analysis by JPCERT/CC**

**Credit**

North Grid Corporation reported these vulnerabilities to JPCERT/CC to notify users of the solutions through JVN. JPCERT/CC and North Grid Corporation coordinated under the Information Security Early Warning Partnership.

**Other Information**

CVE-2023-39416: JVN#19661362: Multiple vulnerabilities in Proself

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in All My Web Needs Logo Scheduler plugin <= 1.2.0 versions.

**Solution**

 Fixed

Update the WordPress Logo Scheduler plugin to the latest available version (at least 1.2.2).

Found this useful? Thank Yuki Haruma for reporting this vulnerability. Buy a coffee ☕

Yuki Haruma discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Logo Scheduler Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 1.2.2.

**No other known vulnerabilities for this plugin**Report

**WordPress plugin developer?**

Start a free security program for your WordPress plugins or request an audit.

Apply for MVDP

**Security researcher?**

Report to Patchstack Alliance bounty platform and earn monthly cash prizes.

Learn more

CVE-2023-30875: WordPress Logo Scheduler <= 1.2.0 - Cross Site Scripting (XSS) vulnerability - Patchstack

The Stripe Payment Plugin for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the eh_callback_handler function in versions up to, and including, 3.7.9. This makes it possible for unauthenticated attackers to modify the order status of arbitrary WooCommerce orders.

Source

CVE