Skip to main content

BNE Testimonials EUVDEUVD-2025-210361

| CVE-2025-68075 MEDIUM
Cross-site Scripting (XSS) (CWE-79)
2026-06-26 audit@patchstack.com GHSA-gg6f-hffr-6j7x
6.5
CVSS 3.1 · Vendor: patchstack
Share

Severity by source

Vendor (patchstack) PRIMARY
6.5 MEDIUM
AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L
vuln.today AI
5.4 MEDIUM

PR:L reflects required Contributor role; S:C captures cross-session script execution; A:N because XSS does not directly impair availability of any system.

3.1 AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
4.0 AV:N/AC:L/AT:N/PR:L/UI:A/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N

Primary rating from Vendor (patchstack).

CVSS VectorVendor: patchstack

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
Required
Scope
Changed
Confidentiality
Low
Integrity
Low
Availability
Low

Lifecycle Timeline

1
Analysis Generated
Jun 26, 2026 - 16:05 vuln.today

DescriptionCVE.org

Contributor Cross Site Scripting (XSS) in BNE Testimonials <= 2.0.8 versions.

AnalysisAI

Stored Cross-Site Scripting in the BNE Testimonials WordPress plugin (versions 2.0.8 and below) allows an authenticated Contributor-level user to inject persistent malicious scripts into testimonial entries. When a privileged user such as an administrator views the affected content, the injected script executes in their browser context, potentially enabling session hijacking, credential theft, or unauthorized administrative actions. No public exploit code or CISA KEV listing has been identified at time of analysis, but the scope-changed CVSS vector underscores that impact extends beyond the contributing user's own session.

Technical ContextAI

BNE Testimonials is a WordPress plugin that allows site owners to collect and display customer testimonials. The vulnerability is classified as CWE-79 (Improper Neutralization of Input During Web Page Generation - Cross-site Scripting), specifically the stored (persistent) variant, where user-supplied input from a Contributor role is written to the database without adequate sanitization or output encoding. When the stored testimonial content is later rendered in the browser of an administrator or other privileged user, the unsanitized payload executes as JavaScript in that user's browser context. The CVSS Scope value of Changed (S:C) reflects this cross-context execution - the attacker's injected code runs in the security context of a different, typically more privileged, user session.

RemediationAI

Upstream fix availability has not been independently confirmed from the provided data - no patched release version was specified in the Patchstack advisory reference. Site administrators should check the official WordPress plugin repository for BNE Testimonials for an updated version beyond 2.0.8 and upgrade immediately if available. If no patched version exists, the plugin should be deactivated and removed until a fix is released, as the testimonial submission surface cannot be safely exposed to Contributor-level users without the underlying sanitization flaw being corrected. As a compensating control, administrators should audit and restrict Contributor-level user accounts, limiting registration to trusted users only. WordPress-level Web Application Firewall (WAF) rules targeting XSS payloads in form submissions (available via plugins such as Wordfence or via hosting-provider WAF offerings) can reduce - but not eliminate - exploitation risk. The Patchstack advisory at the reference URL should be monitored for patch release updates.

Share

EUVD-2025-210361 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy