CVE-2024-29142 – This stored cross-site scripting (XSS) vulnerab... (How to Fix)

Q: What is the severity of CVE-2024-29142?

CVE-2024-29142 has a CVSS score of 7.1 (HIGH). This stored cross-site scripting (XSS) vulnerability in the Better Search WordPress plugin allows attackers to inject malicious scripts into web pages. When users view pages containing the malicious scripts, the attacker can steal session cookies, redirect users, or perform actions on their behalf. All WordPress sites using Better Search plugin versions up to 3.3.0 are affected.

📋 TL;DR

This stored cross-site scripting (XSS) vulnerability in the Better Search WordPress plugin allows attackers to inject malicious scripts into web pages. When users view pages containing the malicious scripts, the attacker can steal session cookies, redirect users, or perform actions on their behalf. All WordPress sites using Better Search plugin versions up to 3.3.0 are affected.

💻 Affected Systems

Products:

WebberZone Better Search – Relevant search results for WordPress

Versions: n/a through 3.3.0

Operating Systems: All operating systems running WordPress

Default Config Vulnerable: ⚠️ Yes

Notes: All WordPress installations using affected plugin versions are vulnerable regardless of configuration.

📦 What is this software?

Better Search by Webberzone

View all CVEs affecting Better Search →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers could steal administrator session cookies, take over WordPress sites, install backdoors, deface websites, or redirect visitors to malicious sites.

🟠

Likely Case

Attackers inject malicious JavaScript to steal user session cookies, potentially compromising user accounts and performing unauthorized actions.

🟢

If Mitigated

With proper input validation and output encoding, malicious scripts would be neutralized before reaching users, preventing exploitation.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: LIKELY

Unauthenticated Exploit: ✅ No

Complexity: LOW

Stored XSS vulnerabilities are commonly exploited and weaponization is likely given the widespread use of WordPress plugins.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 3.3.1 or later

Vendor Advisory: https://patchstack.com/database/vulnerability/better-search/wordpress-better-search-plugin-3-3-0-stored-cross-site-scripting-xss-vulnerability

Restart Required: No

Instructions:

1. Log into WordPress admin panel. 2. Navigate to Plugins → Installed Plugins. 3. Find 'Better Search' and click 'Update Now'. 4. Verify plugin version is 3.3.1 or higher.

🔧 Temporary Workarounds

Disable Better Search Plugin

all

Temporarily disable the vulnerable plugin until patching is possible.

wp plugin deactivate better-search

Implement WAF Rules

all

Configure web application firewall to block XSS payloads targeting Better Search endpoints.

🧯 If You Can't Patch

Implement strict Content Security Policy (CSP) headers to mitigate XSS impact
Enable WordPress security plugins with XSS protection features

🔍 How to Verify

Check if Vulnerable:

Check WordPress admin panel → Plugins → Installed Plugins → Better Search version

Check Version:

wp plugin list --name=better-search --field=version

Verify Fix Applied:

Verify plugin version is 3.3.1 or higher in WordPress admin panel

📡 Detection & Monitoring

Log Indicators:

Unusual POST requests to Better Search endpoints
JavaScript payloads in search parameters

Network Indicators:

Malicious script tags in HTTP requests to WordPress search functionality

SIEM Query:

source="wordpress.log" AND ("better-search" OR "better_search") AND ("script" OR "javascript" OR "onload" OR "onerror")

📊 Metadata

CVE ID: CVE-2024-29142

CVSS v3 Score: 7.1 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L

CWE: CWE-79

Published: March 19, 2024

Last Updated: January 28, 2026

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-29142, you might also want to check these: