The Columns by BestWebSoft plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id' shortcode attribute of the [print_clmns] shortcode in all versions up to and including 1.0.3. This is due to insufficient input sanitization and output escaping on the 'id' attribute. The shortcode receives the 'id' parameter via shortcode_atts() at line 596 and directly embeds it into HTML output at line 731 (in a div id attribute) and into inline CSS at lines 672-729 without any escaping or sanitization. While the SQL query uses %d to cast the value to an integer for database lookup, the original unsanitized string value of $id is still used in the HTML/CSS output. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. The attack requires that at least one column exists in the plugin (created by an admin), as the SQL query must return results for the output branch to be reached.
The Columns by BestWebSoft WordPress plugin versions up to 1.0.3 contains a Stored Cross-Site Scripting vulnerability in the [print_clmns] shortcode's 'id' attribute due to insufficient input sanitization and output escaping. Authenticated attackers with Contributor-level access can inject arbitrary scripts that execute when users view affected pages.
تحتوي إضافة Columns by BestWebSoft لـ WordPress على ثغرة Stored XSS في معامل 'id' الخاص بـ shortcode [print_clmns] حيث يتم استقبال القيمة دون تنقية كافية وإدراجها مباشرة في HTML وCSS. يمكن للمهاجمين المصرح لهم على مستوى المساهم أو أعلى حقن نصوص برمجية تنفذ عند وصول المستخدمين للصفحات المتأثرة.
The Columns by BestWebSoft WordPress plugin versions up to 1.0.3 contains a Stored Cross-Site Scripting vulnerability in the [print_clmns] shortcode's 'id' attribute due to insufficient input sanitization and output escaping. Authenticated attackers with Contributor-level access can inject arbitrary scripts that execute when users view affected pages.
Update the Columns by BestWebSoft plugin to version 1.0.4 or later immediately. If immediate update is not possible, disable the plugin and remove all instances of the [print_clmns] shortcode from published content. Restrict Contributor-level access to trusted users only and implement Web Application Firewall rules to detect XSS patterns in shortcode attributes.
قم بتحديث إضافة Columns by BestWebSoft إلى الإصدار 1.0.4 أو أحدث فوراً. إذا لم يكن التحديث ممكناً، قم بتعطيل الإضافة وإزالة جميع نسخ من shortcode [print_clmns] من المحتوى المنشور. قيد الوصول على مستوى المساهم للمستخدمين الموثوقين فقط وطبق قواعد جدار حماية تطبيقات الويب للكشف عن أنماط XSS في معاملات shortcode.