الثغرات ›

CVE-2026-3349

متوسط

CWE-79 — نوع الضعف

                    نُشر: May 27, 2026                      ·  آخر تحديث: May 30, 2026                      ·  المصدر: NVD                

CVSS v3

6.1

🔗 NVD الرسمي

📄 الوصف (الإنجليزية)

The MinhNhut Link Gateway plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'url' parameter on the redirect page in all versions up to, and including, 3.6.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.

🤖 ملخص AI

The MinhNhut Link Gateway WordPress plugin (versions ≤3.6.1) contains a Reflected Cross-Site Scripting (XSS) vulnerability in the 'url' parameter of its redirect page. Unauthenticated attackers can inject malicious scripts that execute in users' browsers if victims click a crafted link. With no patch currently available and no active exploit in the wild, this represents a medium-risk vulnerability requiring immediate compensating controls for WordPress deployments in Saudi Arabia.

📄 الوصف (العربية)

🤖 التحليل الذكي آخر تحليل: May 29, 2026 22:04

🇸🇦 التأثير على المملكة العربية السعودية

Saudi organizations using WordPress with the MinhNhut Link Gateway plugin are at risk, particularly: (1) E-commerce and retail sectors relying on link shortening/redirection services; (2) Government and public sector websites using WordPress for citizen services; (3) Financial services and banking institutions with WordPress-based customer portals; (4) Telecommunications companies (STC, Mobily) using WordPress for marketing/support pages; (5) Healthcare providers with WordPress-based patient information systems. The vulnerability enables credential theft, malware distribution, and defacement attacks targeting Saudi users.

🏢 القطاعات السعودية المتأثرة

E-commerce and Retail Government and Public Sector Banking and Financial Services Telecommunications (STC, Mobily, Zain) Healthcare and Medical Services Education and Universities Media and Publishing Hospitality and Tourism

🎯 تقنيات MITRE ATT&CK

T1598.003 - Phishing: Spearphishing Link (crafted malicious links) T1566.002 - Phishing: Phishing - Link (distribution vector) T1059.007 - Command and Scripting Interpreter: JavaScript (XSS payload execution) T1185 - Man in the Browser (XSS enables session hijacking) T1539 - Steal Web Session Cookie (XSS can steal authentication tokens) T1040 - Network Sniffing (XSS can capture user credentials)

⚖️ درجة المخاطر السعودية (AI)

6.2

/ 10.0

🔧 Remediation Steps (English)

IMMEDIATE ACTIONS:

1. Audit all WordPress installations for MinhNhut Link Gateway plugin presence using WP-CLI: wp plugin list | grep -i minhnhut

2. Disable the plugin immediately: wp plugin deactivate minhNhut-link-gateway

3. Remove the plugin entirely: wp plugin delete minhNhut-link-gateway



COMPENSATING CONTROLS (if plugin removal not feasible):

1. Implement Web Application Firewall (WAF) rules to block requests containing script tags in 'url' parameter: ModSecurity rule to detect <script>, javascript:, onerror=, onload= patterns

2. Apply Content Security Policy (CSP) headers: Content-Security-Policy: default-src 'self'; script-src 'self'; object-src 'none'

3. Enable WordPress security plugins (Wordfence, Sucuri) with XSS detection enabled

4. Restrict plugin access via .htaccess to admin IPs only



DETECTION RULES:

1. Monitor access logs for 'url' parameter containing encoded/unencoded script tags

2. Alert on HTTP requests to /redirect page with suspicious characters: %3C, %3E, javascript:, onerror

3. Log all plugin activation/deactivation events

4. Monitor for reflected content in HTTP responses matching user input



PATCHING GUIDANCE:

1. Contact plugin vendor for security update timeline

2. If no patch released within 30 days, consider alternative link management plugins (Pretty Links, Bitly integration)

3. Test any replacement plugin thoroughly in staging environment before production deployment

🔧 خطوات المعالجة (العربية)

الإجراءات الفورية:

1. تدقيق جميع تثبيتات WordPress للتحقق من وجود مكون MinhNhut Link Gateway باستخدام WP-CLI: wp plugin list | grep -i minhNhut

2. تعطيل المكون فوراً: wp plugin deactivate minhNhut-link-gateway

3. حذف المكون بالكامل: wp plugin delete minhNhut-link-gateway

الضوابط التعويضية (إذا لم يكن حذف المكون ممكناً):

1. تطبيق قواعد جدار حماية تطبيقات الويب (WAF) لحجب الطلبات التي تحتوي على علامات البرامج النصية في معامل 'url': قاعدة ModSecurity للكشف عن أنماط <script>، javascript:، onerror=، onload=

2. تطبيق رؤوس Content Security Policy (CSP): Content-Security-Policy: default-src 'self'; script-src 'self'; object-src 'none'

3. تفعيل مكونات أمان WordPress (Wordfence، Sucuri) مع تفعيل كشف XSS

4. تقييد وصول المكون عبر .htaccess لعناوين IP الإدارية فقط

قواعد الكشف:

1. مراقبة سجلات الوصول للبحث عن معامل 'url' يحتوي على علامات برامج نصية مشفرة/غير مشفرة

2. تنبيه على طلبات HTTP لصفحة /redirect تحتوي على أحرف مريبة: %3C، %3E، javascript:، onerror

3. تسجيل جميع أحداث تفعيل/تعطيل المكون

4. مراقبة المحتوى المنعكس في استجابات HTTP التي تطابق إدخال المستخدم

إرشادات التصحيح:

1. الاتصال بمورد المكون للحصول على جدول زمني لتحديث الأمان

2. إذا لم يتم إصدار تصحيح خلال 30 يوماً، فكر في مكونات إدارة الروابط البديلة (Pretty Links، تكامل Bitly)

3. اختبر أي مكون بديل بدقة في بيئة التجريب قبل نشره في الإنتاج

📋 خريطة الامتثال التنظيمي

🟢 NCA ECC 2024

ECC 2024 A.14.2.1 - Information security requirements for supplier relationships (plugin vendor security) ECC 2024 A.14.2.5 - Addressing information security in supplier agreements (patch management SLAs) ECC 2024 A.6.2.1 - Ensure information security roles and responsibilities are assigned ECC 2024 A.12.6.1 - Management of technical vulnerabilities (XSS vulnerability tracking and remediation)

🔵 SAMA CSF

Identify (ID) - Asset Management: Identify all WordPress installations with vulnerable plugins Protect (PR) - Access Control: Implement WAF rules and CSP headers to prevent XSS execution Detect (DE) - Security Monitoring: Monitor for XSS attack patterns in access logs Respond (RS) - Incident Response: Establish procedures for plugin vulnerability response Recover (RC) - Recovery Planning: Maintain backup and restore procedures for compromised systems

🟡 ISO 27001:2022

A.5.23 - Information security for supplier relationships A.8.1 - User endpoint devices (browser security controls) A.8.2 - Privileged access rights (restrict plugin management) A.8.3 - Information access restriction (WAF implementation) A.12.6.1 - Management of technical vulnerabilities (patch management) A.14.2.1 - Information security requirements in supplier contracts

🟣 PCI DSS v4.0.1

Requirement 6.2 - Ensure all system components and software are protected from known vulnerabilities Requirement 6.5.1 - Injection flaws (XSS is injection vulnerability) Requirement 6.5.7 - Cross-site scripting (XSS) Requirement 11.3 - Perform penetration testing (test for XSS vulnerabilities)

🔗 المراجع والمصادر 3

🔗

https://plugins.trac.wordpress.org/browser/minhnhut-link-gateway/trunk/classes.php#L263

security@wordfence.com

🔗

https://plugins.trac.wordpress.org/browser/minhnhut-link-gateway/trunk/templates/defaul...

security@wordfence.com

🔗

https://www.wordfence.com/threat-intel/vulnerabilities/id/c2c11644-b9b5-40c7-b558-995b6...

security@wordfence.com

📊 CVSS Score

6.1

/ 10.0 — متوسط

📊 CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Attack VectorN — None / Network

Attack ComplexityL — Low / Local

Privileges RequiredN — None / Network

User InteractionR — Required

ScopeC — Changed

ConfidentialityL — Low / Local

IntegrityL — Low / Local

AvailabilityN — None / Network

📋 حقائق سريعة

الخطورة متوسط

CVSS Score6.1

CWECWE-79

EPSS0.06%

اختراق متاح لا

تصحيح متاح ✗ لا

تاريخ النشر 2026-05-27

المصدر nvd

المشاهدات 1

🇸🇦 درجة المخاطر السعودية

6.2

/ 10.0 — مخاطر السعودية

أولوية: HIGH

🏷️ الوسوم

CWE-79

⚡ إجراءات

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

CVE-2026-3349

عرّفنا بنفسك

تسجيل الدخول مطلوب