CVE-2024-12529

6.4 MEDIUM

Cross-Site Scripting

📋 TL;DR

This stored XSS vulnerability in the brodos.net Onlineshop Plugin for WordPress allows authenticated attackers with contributor-level access or higher to inject malicious scripts into website pages. When users visit compromised pages, the scripts execute in their browsers, potentially stealing session cookies or redirecting to malicious sites. All WordPress sites using this plugin up to version 2.0.2 are affected.

💻 Affected Systems

Products:

• brodos.net Onlineshop Plugin for WordPress

Versions: All versions up to and including 2.0.2

Operating Systems: All operating systems running WordPress

Default Config Vulnerable: ⚠️ Yes

Notes: Requires WordPress installation with the vulnerable plugin enabled. Contributor-level authentication is required for exploitation.

⚠️ Manual Verification Required

This CVE does not have specific version information in our database, so automatic vulnerability detection cannot determine if your system is affected.

Why? The CVE database entry doesn't specify which versions are vulnerable (no version ranges provided by the vendor/NVD).

🔒 Custom verification scripts are available for registered users. Sign up free to download automated test scripts.

Recommended Actions:

1. Review the CVE details at NVD
2. Check vendor security advisories for your specific version
3. Test if the vulnerability is exploitable in your environment
4. Consider updating to the latest version as a precaution

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers could steal administrator credentials, deface websites, redirect users to phishing sites, or install backdoors for persistent access.

🟠

Likely Case

Attackers with contributor accounts inject malicious scripts to steal user session cookies or display unwanted content, potentially compromising user accounts.

🟢

If Mitigated

With proper access controls limiting contributor accounts and regular monitoring, impact is limited to minor content manipulation.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: LIKELY

Unauthenticated Exploit: ✅ No

Complexity: LOW

Exploitation requires contributor-level WordPress access. The vulnerability is in the BrodosCategory shortcode attribute handling.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 2.0.3 or later

Vendor Advisory: https://plugins.trac.wordpress.org/browser/brodos-net-onlineshop

Restart Required: No

Instructions:

1. Log into WordPress admin panel. 2. Navigate to Plugins > Installed Plugins. 3. Find 'brodos.net Onlineshop Plugin'. 4. Click 'Update Now' if update is available. 5. Alternatively, download version 2.0.3+ from WordPress plugin repository and manually update.

🔧 Temporary Workarounds

Disable vulnerable shortcode

all

Remove or disable the BrodosCategory shortcode from posts/pages

Copy

Edit WordPress posts/pages and remove [BrodosCategory] shortcode instances

Restrict contributor capabilities

all

Limit contributor accounts from publishing or editing published content

Copy

Use WordPress role management plugins to modify contributor capabilities

🧯 If You Can't Patch

• Remove the brodos.net Onlineshop Plugin entirely if not essential
• Implement strict Content Security Policy (CSP) headers to mitigate XSS impact

🔍 How to Verify

Check if Vulnerable:

Copy

Check WordPress admin panel > Plugins > Installed Plugins for brodos.net Onlineshop Plugin version 2.0.2 or earlier

Check Version:

Copy

wp plugin list --name='brodos-net-onlineshop' --field=version (if WP-CLI installed)

Verify Fix Applied:

Copy

Verify plugin version is 2.0.3 or later in WordPress admin panel

📡 Detection & Monitoring

Log Indicators:

• Unusual post/page edits by contributor accounts
• Suspicious shortcode modifications in content

Network Indicators:

• Unexpected JavaScript execution from WordPress pages
• Suspicious outbound connections from user browsers

SIEM Query:

Copy

source="wordpress" AND (event="post_modified" OR event="page_modified") AND user_role="contributor" AND content CONTAINS "[BrodosCategory"

📊 Metadata

CVE ID: CVE-2024-12529

CVSS v3 Score: 6.4 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N

CWE: CWE-79

EPSS Score: 0.09% exploit probability (24.7th percentile)

Published: January 25, 2025

Last Updated: January 25, 2025

🔗 References

• https://plugins.trac.wordpress.org/browser/brodos-net-onlineshop/tags/2.0.1/class.onlineshop-init.php#L113
• https://www.wordfence.com/threat-intel/vulnerabilities/id/19a672c6-e911-46bb-a55b-c5788eedca3e?source=cve

📤 Share & Export

Twitter LinkedIn Reddit Copy Link

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-12529, you might also want to check these:

CVE-2021-39199 10.0

CVE-2021-39199 is a critical cross-site scripting (XSS) vulnerability in the remark-html Node.js lib...

Same vulnerability type (CWE-79)

CVE-2021-32671 10.0

This vulnerability in Flarum forum software allows attackers to inject malicious HTML/JavaScript int...

Same vulnerability type (CWE-79)

CVE-2021-32798 10.0

CVE-2021-32798 is a critical vulnerability in Jupyter Notebook that allows malicious notebook files ...

Same vulnerability type (CWE-79)