BoldGrid Easy SEO Vulnerability – Authenticated(Contributor+) Stored Cross-Site Scripting via Meta Description – CVE-2024-1692 |WordPress Plugin Vulnerability Report
Plugin Name: BoldGrid Easy SEO – Simple and Effective SEO
Key Information:
- Software Type: Plugin
- Software Slug: boldgrid-easy-seo
- Software Status: Active
- Software Author: boldgrid
- Software Downloads: 692,441
- Active Installs: 70,000
- Last Updated: April 1, 2024
- Patched Versions: 1.6.14
- Affected Versions: <= 1.6.13
Vulnerability Details:
- Name: BoldGrid Easy SEO – Simple and Effective SEO <= 1.6.13
- Title: Authenticated(Contributor+) Stored Cross-Site Scripting via Meta Description
- Type: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
- CVE: CVE-2024-1692
- CVSS Score: 6.4
- Publicly Published: March 29, 2024
- Researcher: Webbernaut
- Description: The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the meta description field in all versions up to, and including, 1.6.13 due to insufficient input sanitization and output escaping on user-supplied attributes. This vulnerability allows authenticated attackers with contributor-level and above permissions to inject arbitrary web scripts into pages that will execute whenever a user accesses an injected page.
Summary:
The BoldGrid Easy SEO plugin for WordPress has a vulnerability in versions up to and including 1.6.13 that enables authenticated users with contributor-level and above permissions to perform stored cross-site scripting via the meta description field. This vulnerability has been patched in version 1.6.14.
Detailed Overview:
This vulnerability, discovered by researcher Webbernaut, is significant due to its potential for allowing attackers to execute arbitrary web scripts on affected sites. The issue stems from insufficient input sanitization and output escaping in the plugin's handling of meta descriptions. This flaw can lead to a range of malicious activities, including the theft of user data and the compromise of site integrity. The developers of BoldGrid Easy SEO have addressed this vulnerability by releasing patch 1.6.14, which applies the necessary sanitization and escaping procedures to prevent such attacks.
Advice for Users:
Immediate Action: Users of the BoldGrid Easy SEO plugin should immediately update to the patched version 1.6.14 to mitigate this vulnerability. Check for Signs of Vulnerability: Regularly review your website's pages and meta descriptions for unexpected or malicious content that could indicate exploitation. Alternate Plugins: While the patched version is secure, considering alternative SEO plugins can provide an added layer of precaution. Stay Updated: Consistently updating all WordPress plugins to their latest versions is crucial for maintaining site security and functionality.
Conclusion:
The swift action taken by the developers to release a patch for this vulnerability highlights the critical nature of maintaining up-to-date software on your WordPress site. To ensure your site's security, it is advised that all users update their BoldGrid Easy SEO plugin to version 1.6.14 or later.