cleantalk
Vulnerabilities and Security Researches

Category Posts Widget, CVE-2024-6158

CVE, Research URL

CVE-2024-6158

Home page URL

Security reports for Category Posts Widget

Application

Category Posts Widget

Published on
Aug 12, 2024
Research Description
The Category Posts Widget WordPress plugin before 4.9.17, term-and-category-based-posts-widget WordPress plugin before 4.9.13 does not validate and escape some of its "Category Posts" widget settings before outputting them back in a page/post where the Widget is embed, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
Affected versions
Min -, max 4.9.17.
Status
vulnerable
Previous vulnerability researches
Category Posts Widget (CVE-2024-6158) , Jul 28, 2024
Category Posts Widget (CVE-2024-9638) , Jan 08, 2025
Category Posts Widget (CVE-2025-1453) , May 07, 2025
List category posts (CVE-2024-9020) , Jan 21, 2025
List category posts (CVE-2024-1051) , Jun 07, 2024
New vulnerability
Drag and Drop Multiple File Upload for WooCommerce (CVE-2025-4403) , May 11, 2025
Contact Us By Lord Linus (CVE-2025-1382) , May 11, 2025
Contact Form by WPForms – Drag & Drop Form Builder for WordPress (CVE-2025-3794) , May 10, 2025
Jeg Elementor Kit (CVE-2025-2944) , May 10, 2025
1 Click WordPress Migration Plugin – 100% FREE for a limited time (CVE-2025-3455) , May 10, 2025