CVE-2023-48749: 
WordPress vulnerability analysis and mitigation

A Stored Cross-Site Scripting (XSS) vulnerability was discovered in Theme nectar Salient Core WordPress plugin, tracked as CVE-2023-48749. The vulnerability affects versions up to and including 2.0.2 of the Salient Core plugin. The issue was discovered by Rafie Muhammad and was publicly disclosed on November 24, 2023 (Wordfence, WPScan).

The vulnerability stems from insufficient input sanitization and output escaping on user-supplied attributes in the plugin's shortcode(s). The severity of this vulnerability has been assessed with multiple CVSS scores: NIST assigned a CVSS v3.1 Base Score of 5.4 (Medium) with vector CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N, while Patchstack rated it at 6.5 (Medium) with vector CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L. The vulnerability is classified under CWE-79: Improper Neutralization of Input During Web Page Generation (NVD).

The vulnerability allows authenticated attackers with contributor-level permissions or higher to inject arbitrary web scripts into pages. These malicious scripts will execute whenever a user accesses an affected page. This could enable attackers to inject malicious scripts, redirects, advertisements, and other HTML payloads into the website (Patchstack).

The vulnerability has been fixed in version 2.0.3 of the Salient Core plugin. Users are advised to update to version 2.0.3 or later to remove the vulnerability. Additionally, Patchstack has issued a virtual patch to mitigate this issue by blocking potential attacks until users can update to the fixed version (Patchstack).