Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-2rj3-m9rf-r3xp

Опубликовано: 21 мар. 2026
Источник: github
Github: Не прошло ревью
CVSS3: 6.5

Описание

The Task Manager plugin for WordPress is vulnerable to arbitrary shortcode execution via the 'search' AJAX action in all versions up to, and including, 3.0.2. This is due to missing capability checks in the callback_search() function and insufficient input validation that allows shortcode syntax (square brackets) to pass through sanitize_text_field() and be concatenated into a do_shortcode() call. This makes it possible for authenticated attackers, with Subscriber-level access and above, to execute arbitrary shortcodes on the site by injecting shortcode syntax into parameters like 'task_id', 'point_id', 'categories_id', or 'term'.

The Task Manager plugin for WordPress is vulnerable to arbitrary shortcode execution via the 'search' AJAX action in all versions up to, and including, 3.0.2. This is due to missing capability checks in the callback_search() function and insufficient input validation that allows shortcode syntax (square brackets) to pass through sanitize_text_field() and be concatenated into a do_shortcode() call. This makes it possible for authenticated attackers, with Subscriber-level access and above, to execute arbitrary shortcodes on the site by injecting shortcode syntax into parameters like 'task_id', 'point_id', 'categories_id', or 'term'.

Ссылки

EPSS

Процентиль: 16%
0.0005
Низкий

6.5 Medium

CVSS3

CVE ID

CVE-2026-4004

Дефекты

CWE-94

EPSS

Процентиль: 16%
0.0005
Низкий

6.5 Medium

CVSS3

CVE ID

CVE-2026-4004

Дефекты

CWE-94