{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-3435", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-04-07T20:08:15.312Z", "datePublished": "2025-04-24T03:21:30.361Z", "dateUpdated": "2026-04-08T16:55:25.039Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T16:55:25.039Z"}, "affected": [{"vendor": "kitae-park", "product": "Mang Board WP", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "1.8.6", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The Mang Board WP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the board_header and board_footer parameters in all versions up to, and including, 1.8.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled."}], "title": "MangBoard WP <= 1.8.6 - Authenticated (Administrator+) Stored Cross-Site Scripting via Board Header And Footer", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/5b97a2f7-b730-4fb7-a41e-dd37f5f87f27?source=cve"}, {"url": "https://plugins.trac.wordpress.org/changeset/3272163/mangboard/trunk"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "cweId": "CWE-79", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N", "baseScore": 4.4, "baseSeverity": "MEDIUM"}}], "credits": [{"lang": "en", "type": "finder", "value": "Quang Huynh Ngoc"}], "timeline": [{"time": "2025-01-10T00:00:00.000Z", "lang": "en", "value": "Discovered"}, {"time": "2025-04-23T14:33:27.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-04-24T13:59:33.451091Z", "id": "CVE-2025-3435", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-04-24T13:59:44.373Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-3435", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-04-24T13:59:33.451091Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-04-24T13:59:39.403Z"}}], "cna": {"title": "MangBoard WP <= 1.8.6 - Authenticated (Administrator+) Stored Cross-Site Scripting via Board Header And Footer", "credits": [{"lang": "en", "type": "finder", "value": "Quang Huynh Ngoc"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 4.4, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N"}}], "affected": [{"vendor": "kitae-park", "product": "Mang Board WP", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "1.8.6"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-01-10T00:00:00.000Z", "value": "Discovered"}, {"lang": "en", "time": "2025-04-23T14:33:27.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/5b97a2f7-b730-4fb7-a41e-dd37f5f87f27?source=cve"}, {"url": "https://plugins.trac.wordpress.org/changeset/3272163/mangboard/trunk"}], "descriptions": [{"lang": "en", "value": "The Mang Board WP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the board_header and board_footer parameters in all versions up to, and including, 1.8.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-79", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T16:55:25.039Z"}}}, "cveMetadata": {"cveId": "CVE-2025-3435", "state": "PUBLISHED", "dateUpdated": "2026-04-08T16:55:25.039Z", "dateReserved": "2025-04-07T20:08:15.312Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-04-24T03:21:30.361Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The Mang Board WP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the board_header and board_footer parameters in all versions up to, and including, 1.8.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled."}, {"lang": "es", "value": "El complemento Mang Board WP para WordPress es vulnerable a Cross-site Scripting almacenado a trav\u00e9s de los par\u00e1metros board_header y board_footer en todas las versiones hasta la 1.8.6 incluida, debido a una depuraci\u00f3n de entrada y un escape de salida insuficientes. Esto permite a atacantes autenticados, con acceso de administrador, inyectar secuencias de comandos web arbitrarias en p\u00e1ginas que se ejecutar\u00e1n al acceder un usuario a una p\u00e1gina inyectada. Esto solo afecta a instalaciones multisitio y a instalaciones donde se ha deshabilitado unfiltered_html."}], "id": "CVE-2025-3435", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 1.3, "impactScore": 2.7, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2025-04-24T04:15:49.710", "references": [{"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/changeset/3272163/mangboard/trunk"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/5b97a2f7-b730-4fb7-a41e-dd37f5f87f27?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-21T21:11:57.261638+00:00", "value": {"mitigation_remediation": ["Upgrade MangBoard WP to the latest version (\u22651.8.7) or any release that removes the vulnerable board_header and board_footer inputs.", "Restrict administrator accounts and enforce least\u2011privilege access so that only trusted users can modify plugin settings.", "If an upgrade is not available, disable the plugin or remove the board_header and board_footer features to prevent the injection of unescaped content."], "summary": {"action": "Apply Patch", "impact": "Stored Cross\u2011Site Scripting"}, "threat_synthesis": {"affected_systems": "All installs of the kitae\u2011park MangBoard WP plugin up to and including version 1.8.6 are affected. The issue exists only on WordPress multisite sites where the unfiltered_html option has been disabled.", "description_and_impact": "The MangBoard WP plugin is vulnerable to stored cross\u2011site scripting via its board_header and board_footer parameters. An administrator\u2011level user can inject arbitrary web scripts that are rendered on any page that loads the manipulated content, potentially enabling session hijacking, defacement, or other client\u2011side attacks. The weakness is a classic input validation and output escaping flaw (CWE\u201179).", "risk_and_exploitability": "The CVSS score of 4.4 indicates a moderate risk level, and the EPSS score of less than 1% suggests a very low probability of exploitation at present. The vulnerability is not present in the CISA KEV catalog. Exploitation requires an authenticated administrator with access to the plugin\u2019s settings on a multisite installation where unfiltered_html is off. Under those conditions an attacker can inject malicious scripts that will execute automatically when users visit the affected pages."}}}}, "created": "2025-07-12T16:01:16.885353+00:00", "updated": "2026-04-21T21:15:45.450643+00:00", "vendors": ["wordpress", "wordpress$PRODUCT$wordpress"]}