CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-11512

Stored XSS in the IMPress for IDX Broker WordPress plugin before 2.6.2 allows authenticated attackers with minimal (subscriber-level) permissions to save arbitrary JavaScript in the plugin's settings panel via the idx_update_recaptcha_key AJAX action and a crafted idx_recaptcha_site_key parameter, which would then be executed in the browser of any administrator visiting the panel. This could be used to create new administrator-level accounts.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 48.5%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

Products affected by CVE-2020-11512

Idxbroker » Impress For Idx Broker » Version: N/A

cpe:2.3:a:idxbroker:impress_for_idx_broker:-
Idxbroker » Impress For Idx Broker » Version: 1.0.3

cpe:2.3:a:idxbroker:impress_for_idx_broker:1.0.3
Idxbroker » Impress For Idx Broker » Version: 1.0.4

cpe:2.3:a:idxbroker:impress_for_idx_broker:1.0.4
Idxbroker » Impress For Idx Broker » Version: 1.0.5

cpe:2.3:a:idxbroker:impress_for_idx_broker:1.0.5
Idxbroker » Impress For Idx Broker » Version: 1.0.6

cpe:2.3:a:idxbroker:impress_for_idx_broker:1.0.6
Idxbroker » Impress For Idx Broker » Version: 1.0.7

cpe:2.3:a:idxbroker:impress_for_idx_broker:1.0.7
Idxbroker » Impress For Idx Broker » Version: 1.0.8

cpe:2.3:a:idxbroker:impress_for_idx_broker:1.0.8
Idxbroker » Impress For Idx Broker » Version: 1.0.9

cpe:2.3:a:idxbroker:impress_for_idx_broker:1.0.9
Idxbroker » Impress For Idx Broker » Version: 1.1.0

cpe:2.3:a:idxbroker:impress_for_idx_broker:1.1.0
Idxbroker » Impress For Idx Broker » Version: 1.1.1

cpe:2.3:a:idxbroker:impress_for_idx_broker:1.1.1
Idxbroker » Impress For Idx Broker » Version: 1.1.2

cpe:2.3:a:idxbroker:impress_for_idx_broker:1.1.2
Idxbroker » Impress For Idx Broker » Version: 1.1.3

cpe:2.3:a:idxbroker:impress_for_idx_broker:1.1.3
Idxbroker » Impress For Idx Broker » Version: 1.1.4

cpe:2.3:a:idxbroker:impress_for_idx_broker:1.1.4
Idxbroker » Impress For Idx Broker » Version: 1.1.5

cpe:2.3:a:idxbroker:impress_for_idx_broker:1.1.5
Idxbroker » Impress For Idx Broker » Version: 1.1.6

cpe:2.3:a:idxbroker:impress_for_idx_broker:1.1.6
Idxbroker » Impress For Idx Broker » Version: 1.1.7

cpe:2.3:a:idxbroker:impress_for_idx_broker:1.1.7
Idxbroker » Impress For Idx Broker » Version: 1.2.0

cpe:2.3:a:idxbroker:impress_for_idx_broker:1.2.0
Idxbroker » Impress For Idx Broker » Version: 1.2.1

cpe:2.3:a:idxbroker:impress_for_idx_broker:1.2.1
Idxbroker » Impress For Idx Broker » Version: 1.2.2

cpe:2.3:a:idxbroker:impress_for_idx_broker:1.2.2
Idxbroker » Impress For Idx Broker » Version: 1.2.3

cpe:2.3:a:idxbroker:impress_for_idx_broker:1.2.3
Idxbroker » Impress For Idx Broker » Version: 1.2.4

cpe:2.3:a:idxbroker:impress_for_idx_broker:1.2.4
Idxbroker » Impress For Idx Broker » Version: 1.3.0

cpe:2.3:a:idxbroker:impress_for_idx_broker:1.3.0
Idxbroker » Impress For Idx Broker » Version: 1.3.1

cpe:2.3:a:idxbroker:impress_for_idx_broker:1.3.1
Idxbroker » Impress For Idx Broker » Version: 1.3.2

cpe:2.3:a:idxbroker:impress_for_idx_broker:1.3.2
Idxbroker » Impress For Idx Broker » Version: 2.0.0

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.0.0
Idxbroker » Impress For Idx Broker » Version: 2.0.1

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.0.1
Idxbroker » Impress For Idx Broker » Version: 2.0.2

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.0.2
Idxbroker » Impress For Idx Broker » Version: 2.0.3

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.0.3
Idxbroker » Impress For Idx Broker » Version: 2.1.0

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.1.0
Idxbroker » Impress For Idx Broker » Version: 2.1.1

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.1.1
Idxbroker » Impress For Idx Broker » Version: 2.1.2

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.1.2
Idxbroker » Impress For Idx Broker » Version: 2.1.3

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.1.3
Idxbroker » Impress For Idx Broker » Version: 2.1.4

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.1.4
Idxbroker » Impress For Idx Broker » Version: 2.1.5

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.1.5
Idxbroker » Impress For Idx Broker » Version: 2.2.0

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.2.0
Idxbroker » Impress For Idx Broker » Version: 2.2.1

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.2.1
Idxbroker » Impress For Idx Broker » Version: 2.3.0

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.3.0
Idxbroker » Impress For Idx Broker » Version: 2.3.1

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.3.1
Idxbroker » Impress For Idx Broker » Version: 2.3.2

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.3.2
Idxbroker » Impress For Idx Broker » Version: 2.3.3

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.3.3
Idxbroker » Impress For Idx Broker » Version: 2.3.4

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.3.4
Idxbroker » Impress For Idx Broker » Version: 2.3.5

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.3.5
Idxbroker » Impress For Idx Broker » Version: 2.4.0

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.4.0
Idxbroker » Impress For Idx Broker » Version: 2.4.1

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.4.1
Idxbroker » Impress For Idx Broker » Version: 2.4.2

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.4.2
Idxbroker » Impress For Idx Broker » Version: 2.4.3

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.4.3
Idxbroker » Impress For Idx Broker » Version: 2.4.4

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.4.4
Idxbroker » Impress For Idx Broker » Version: 2.4.5

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.4.5
Idxbroker » Impress For Idx Broker » Version: 2.5.0

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.5.0
Idxbroker » Impress For Idx Broker » Version: 2.5.1

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.5.1
Idxbroker » Impress For Idx Broker » Version: 2.5.10

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.5.10
Idxbroker » Impress For Idx Broker » Version: 2.5.11

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.5.11
Idxbroker » Impress For Idx Broker » Version: 2.5.12

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.5.12
Idxbroker » Impress For Idx Broker » Version: 2.5.2

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.5.2
Idxbroker » Impress For Idx Broker » Version: 2.5.3

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.5.3
Idxbroker » Impress For Idx Broker » Version: 2.5.4

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.5.4
Idxbroker » Impress For Idx Broker » Version: 2.5.5

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.5.5
Idxbroker » Impress For Idx Broker » Version: 2.5.6

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.5.6
Idxbroker » Impress For Idx Broker » Version: 2.5.7

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.5.7
Idxbroker » Impress For Idx Broker » Version: 2.5.8

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.5.8
Idxbroker » Impress For Idx Broker » Version: 2.5.9

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.5.9
Idxbroker » Impress For Idx Broker » Version: 2.6.0

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.6.0
Idxbroker » Impress For Idx Broker » Version: 2.6.1

cpe:2.3:a:idxbroker:impress_for_idx_broker:2.6.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-11512

Products

Pricing

Contact Us