Allow HTML in Category Descriptions WordPress Plugin Stored Cross-Site Scripting Vulnerability
Vulnerability
A stored cross-site scripting vulnerability has been identified in the Allow HTML in Category Descriptions plugin for WordPress, affecting all versions up to and including 1.2.4. The vulnerability arises because the plugin removes the 'wp_kses_data' output filter from several description fields without verifying user capabilities. This flaw allows authenticated attackers with administrator-level access to inject arbitrary scripts into category descriptions, which are executed when users view the corresponding pages. The issue is present in multi-site installations where unfiltered_html has been disabled.
Impact
Exploitation of this vulnerability allows for stored cross-site scripting, where injected scripts are executed in the context of the user viewing the category description.
Remediation
No known patch is available. It is recommended to review the vulnerability details and consider uninstalling the affected plugin.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.