{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-11810", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-10-15T15:30:54.714Z", "datePublished": "2025-10-22T08:27:06.662Z", "dateUpdated": "2026-04-08T16:47:09.373Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T16:47:09.373Z"}, "affected": [{"vendor": "chrishurst", "product": "Name: Print Button Shortcode", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "1.0.1", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The Print Button Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'print-button' shortcode in all versions up to, and including, 1.0.1. This is due to insufficient input sanitization and output escaping on the 'target' attribute. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}], "title": "Print Button Shortcode <= 1.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/3b3f0f80-0004-4373-b0a7-92f2d047415d?source=cve"}, {"url": "https://wordpress.org/plugins/print-button-shortcode/"}, {"url": "https://plugins.trac.wordpress.org/browser/print-button-shortcode/tags/1.0.1/print-button-shortcode.php#L46"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "cweId": "CWE-79", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N", "baseScore": 6.4, "baseSeverity": "MEDIUM"}}], "credits": [{"lang": "en", "type": "finder", "value": "zakaria"}], "timeline": [{"time": "2025-10-21T20:23:18.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-10-22T15:01:05.239732Z", "id": "CVE-2025-11810", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-10-22T15:01:41.924Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-11810", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-10-22T15:01:05.239732Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-10-22T15:01:17.355Z"}}], "cna": {"title": "Print Button Shortcode <= 1.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode", "credits": [{"lang": "en", "type": "finder", "value": "zakaria"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 6.4, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"}}], "affected": [{"vendor": "chrishurst", "product": "Name: Print Button Shortcode", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "1.0.1"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-10-21T20:23:18.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/3b3f0f80-0004-4373-b0a7-92f2d047415d?source=cve"}, {"url": "https://wordpress.org/plugins/print-button-shortcode/"}, {"url": "https://plugins.trac.wordpress.org/browser/print-button-shortcode/tags/1.0.1/print-button-shortcode.php#L46"}], "descriptions": [{"lang": "en", "value": "The Print Button Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'print-button' shortcode in all versions up to, and including, 1.0.1. This is due to insufficient input sanitization and output escaping on the 'target' attribute. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-79", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T16:47:09.373Z"}}}, "cveMetadata": {"cveId": "CVE-2025-11810", "state": "PUBLISHED", "dateUpdated": "2026-04-08T16:47:09.373Z", "dateReserved": "2025-10-15T15:30:54.714Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-10-22T08:27:06.662Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The Print Button Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'print-button' shortcode in all versions up to, and including, 1.0.1. This is due to insufficient input sanitization and output escaping on the 'target' attribute. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}], "id": "CVE-2025-11810", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 2.7, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2025-10-22T09:15:32.870", "references": [{"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/browser/print-button-shortcode/tags/1.0.1/print-button-shortcode.php#L46"}, {"source": "security@wordfence.com", "url": "https://wordpress.org/plugins/print-button-shortcode/"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/3b3f0f80-0004-4373-b0a7-92f2d047415d?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-22T12:41:58.031760+00:00", "value": {"mitigation_remediation": ["Upgrade the Print Button Shortcode plugin to the latest release (\u22651.0.2) where the \u2018target\u2019 attribute is validated and output escaped.", "Revoke contributor or higher editing permissions for users who do not require access to shortcode\u2011enabled content, or enforce stricter role restrictions.", "Remove or sanitize any existing \u2018target\u2019 attributes in stored shortcode content; if the plugin remains in use, consider disabling it or replacing it with a security\u2011audited alternative."], "summary": {"action": "Immediate Patch", "impact": "Stored client\u2011side code injection (XSS) via an insecure shortcode attribute"}, "threat_synthesis": {"affected_systems": "WordPress sites running chrishurst\u2019s Print Button Shortcode plugin, versions up to and including 1.0.1. Any installation that uses the shortcode in page content is affected.", "description_and_impact": "The Print Button Shortcode plugin permits stored cross\u2011site scripting because the \u2018target\u2019 attribute passed to the \u2018print\u2011button\u2019 shortcode is neither sanitized nor escaped. Authenticated contributors and higher can inject arbitrary JavaScript that will run in the browsers of any user who views a page containing the malicious shortcode. This client\u2011side injection (CWE\u201179) can lead to credential theft, session hijacking, defacement, or loading of additional malicious content, without affecting server\u2011side logic.", "risk_and_exploitability": "The CVSS score of 6.4 indicates moderate severity. The EPSS score of less than 1\u202f% shows a very low likelihood of exploitation at present, and the vulnerability is not listed in the CISA KEV catalog. However, because the attack requires only a contributor\u2011level authenticated account, the risk remains noteworthy for sites that grant such permissions and the attack vector involves legitimate content\u2011editing privileges. Once the payload is stored, it executes for every visitor who accesses the affected page."}}}}, "created": "2025-10-23T10:07:58.888566+00:00", "updated": "2026-04-22T12:45:17.029678+00:00", "vendors": ["wordpress", "wordpress$PRODUCT$wordpress"]}