CVERadar

CVE-2024-2738

High Severity

Permalink_manager_lite_project

SVRS

42/100

CVSSv3

NA/10

EPSS

0.00163/1

CVE-2024-2738: Reflected Cross-Site Scripting (XSS) vulnerability impacts WordPress Permalink Manager Lite and Pro plugins (versions up to 2.4.3.1). Unauthenticated attackers can inject arbitrary web scripts via the 's' parameter, potentially compromising user sessions. With an SVRS of 42, this vulnerability requires monitoring and patching, but it's not critical, despite the "In The Wild" tag. The risk lies in tricking users into clicking malicious links, leading to account takeover or malware injection. This vulnerability highlights the importance of input sanitization and output escaping in WordPress plugins. While the CVSS score is 0, the SVRS suggests a moderate level of risk due to potential exploitation.

TAGS

In The Wild

VECTOR STRING

PUBLICATION DATE2024-04-09

LAST MODIFIED2025-02-13

SOCRadar

AI Insight

Description:

CVE-2024-2738 is a Reflected Cross-Site Scripting (XSS) vulnerability in the Permalink Manager Lite and Pro plugins for WordPress. It allows unauthenticated attackers to inject malicious scripts into web pages, potentially leading to account compromise, data theft, or malware infections.

Key Insights:

SVRS Score: 42, indicating a moderate risk. While not as critical as vulnerabilities with SVRS scores above 80, it still warrants attention and remediation.
Exploit Status: Active exploits have been published, making it imperative to patch affected systems promptly.
CISA Warning: The Cybersecurity and Infrastructure Security Agency (CISA) has warned of the vulnerability, urging organizations to take immediate action.
In the Wild: The vulnerability is actively exploited by hackers, highlighting the need for urgent mitigation.

Mitigation Strategies:

Update the Permalink Manager Lite and Pro plugins to version 2.4.4 or later.
Implement input validation and output escaping mechanisms to prevent malicious script injection.
Use a web application firewall (WAF) to block malicious requests.
Educate users about the risks of clicking on suspicious links or opening untrusted attachments.

Additional Information:

If users have additional queries regarding this incident, they can use the 'Ask to Analyst' feature, contact SOCRadar directly, or open a support ticket for more information if necessary.

Indicators of Compromise

No IOCs found for this CVE

Exploits

No exploits found for this CVE

Enhance Your CVE Management with SOCRadar Vulnerability Intelligence

Get comprehensive CVE details, real-time notifications, and proactive threat management all in one platform.

CREATE FREE ACCOUNT

CVE Details

Access comprehensive CVE information instantly

Real-time Tracking

Subscribe to CVEs and get instant updates

Exploit Analysis

Monitor related APT groups and threats

IOC Tracking

Analyze and track CVE-related IOCs

News

Analysis of CVE-2024-2738 Apache HugeGraph

/u/SL7reach2024-06-05

Analysis of CVE-2024-2738 Apache HugeGraph |   submitted by   /u/SL7reach [link]   [comments]  submitted by   /u/SL7reach [link]   <

cve-2024-2738

domains

urls

cves

CVE-2024-2738 | Permalink Manager Lite Plugin up to 2.4.3.1 on WordPress cross site scripting

vuldb.com2024-05-03

CVE-2024-2738 | Permalink Manager Lite Plugin up to 2.4.3.1 on WordPress cross site scripting | A vulnerability has been found in Permalink Manager Lite Plugin and Permalink Manager Pro Plugin up to 2.4.3.1 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2024-2738. The attack can be launched remotely. There is

cve-2024-2738

ipv4s

domains

urls

Social Media

Nicolas Krassas

@Dinosn

2024-06-05

Analysis of CVE-2024-2738 Apache HugeGraph https://t.co/lwXRlMo00r

Affected Software

Configuration 1

Type	Vendor	Product
App	Permalink_manager_lite_project	permalink_manager_lite

References

Reference	Link
[email protected]	https://gist.github.com/Xib3rR4dAr/561ac3c17b92cb55d3032504a076fa4b
[email protected]	https://gist.github.com/Xib3rR4dAr/b1eec00e844932c6f2f30a63024b404e
[email protected]	https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3052848%40permalink-manager%2Ftrunk&old=3034660%40permalink-manager%2Ftrunk&sfp_email=&sfph_mail=
[email protected]	https://www.wordfence.com/threat-intel/vulnerabilities/id/7020d5a1-a4a6-489c-8615-bc7898553bcf?source=cve
AF854A3A-2127-422B-91AE-364DA2661108	https://gist.github.com/Xib3rR4dAr/561ac3c17b92cb55d3032504a076fa4b
AF854A3A-2127-422B-91AE-364DA2661108	https://gist.github.com/Xib3rR4dAr/b1eec00e844932c6f2f30a63024b404e
AF854A3A-2127-422B-91AE-364DA2661108	https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3052848%40permalink-manager%2Ftrunk&old=3034660%40permalink-manager%2Ftrunk&sfp_email=&sfph_mail=
AF854A3A-2127-422B-91AE-364DA2661108	https://www.wordfence.com/threat-intel/vulnerabilities/id/7020d5a1-a4a6-489c-8615-bc7898553bcf?source=cve
[email protected]	https://gist.github.com/Xib3rR4dAr/561ac3c17b92cb55d3032504a076fa4b
[email protected]	https://gist.github.com/Xib3rR4dAr/b1eec00e844932c6f2f30a63024b404e
[email protected]	https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3052848%40permalink-manager%2Ftrunk&old=3034660%40permalink-manager%2Ftrunk&sfp_email=&sfph_mail=
[email protected]	https://www.wordfence.com/threat-intel/vulnerabilities/id/7020d5a1-a4a6-489c-8615-bc7898553bcf?source=cve
GITHUB	https://gist.github.com/Xib3rR4dAr/561ac3c17b92cb55d3032504a076fa4b
GITHUB	https://gist.github.com/Xib3rR4dAr/b1eec00e844932c6f2f30a63024b404e

CWE Details

CWE ID	CWE Name	Description
CWE-79	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

CVE Radar

Real-time CVE Intelligence & Vulnerability Management Platform

CVE Radar provides comprehensive vulnerability intelligence by monitoring CVE databases, security advisories, and threat feeds. Get instant updates on new vulnerabilities, exploit details, and mitigation strategies specific to your assets.

Get Free Vulnerability Intelligence AccessAccess real-time CVE monitoring, exploit analysis, and threat intelligence