Primary

Context

UiPress Lite Missing Capability Check Vulnerability Allowing Unauthorized Data Modification

Vulnerability

A vulnerability exists in the UiPress Lite plugin for WordPress, specifically in versions up to and including 3.5.08. The issue arises from a lack of proper capability checks in the 'uip_save_ui_template' function, which allows authenticated users with Subscriber-level access and above to save templates embedded with custom JavaScript. This unauthorized data modification could lead to stored cross-site scripting (XSS) vulnerabilities.

Impact

Exploitation of this vulnerability allows for unauthorized data modification, with the potential introduction of malicious JavaScript that could be executed in the context of the user.

Reproduction

To reproduce this vulnerability, an authenticated user with Subscriber-level access or higher can use the 'uip_save_ui_template' function to save a UI template. The absence of a capability check allows this action to be performed without the necessary permissions, enabling the inclusion of custom JavaScript in the template.

Added: Nov 21, 2025, 8:53 AM

Updated: Nov 21, 2025, 4:31 PM

Vulnerability Rating

Custom Algorithm

spread

2.2

impact

1.7

exploitability

6.4

remediation

0.0

relevance

1.1

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.2

impact

1.7

exploitability

6.4

remediation

0.0

relevance

1.1

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

UiPress Lite Missing Capability Check Vulnerability Allowing Unauthorized Data Modification

Vulnerability

Impact

Reproduction

Affected Products

UiPress lite

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating