CVE-2025-3435

Vulnerability

The Mang Board WP plugin for WordPress, in all versions up to and including 1.8.6, contains a Stored Cross-Site Scripting vulnerability [1]. The board_header and board_footer parameters are insufficiently sanitized and escaped, allowing authenticated attackers with administrator-level access to inject arbitrary web scripts. This vulnerability only affects multi-site installations or installations where unfiltered_html has been disabled [1].

Exploitation

An attacker must have administrator-level access to the WordPress site. On multi-site installations or where unfiltered_html is disabled, the attacker can inject malicious scripts via the board_header or board_footer fields [1]. The injected script is stored and will execute whenever a user views a page containing the compromised parameters.

Impact

Successful exploitation allows the attacker to execute arbitrary web scripts in the context of a victim's browser session when they access an affected page [1]. This can lead to session hijacking, defacement, or theft of sensitive information, depending on the injected payload.

Mitigation

A fix is available in the WordPress plugin repository, as shown in revision 3272163 of the mangboard/trunk [1]. Users should update to the latest patched version of Mang Board WP. There are no known workarounds for unpatched versions; restricting administrator access to trusted users is a general security best practice.