{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-8313", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-07-29T20:14:47.379Z", "datePublished": "2025-08-05T06:39:49.155Z", "dateUpdated": "2026-04-08T17:31:42.325Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:31:42.325Z"}, "affected": [{"vendor": "emarket-design", "product": "Campus Directory \u2013 Faculty, Staff & Student Directory Plugin for WordPress", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "1.9.1", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The Campus Directory plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the \u2018noaccess_msg\u2019 parameter in all versions up to, and including, 1.9.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}], "title": "Campus Directory <= 1.9.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via noaccess_msg Parameter", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/ee031b29-a334-4df4-8c03-4ffd306e38ea?source=cve"}, {"url": "https://plugins.svn.wordpress.org/campus-directory/tags/1.9.1/includes/emd-form-builder-lite/emd-form-frontend.php"}, {"url": "https://wordpress.org/plugins/campus-directory/#developers"}, {"url": "https://plugins.trac.wordpress.org/changeset/3337642"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "cweId": "CWE-79", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N", "baseScore": 6.4, "baseSeverity": "MEDIUM"}}], "credits": [{"lang": "en", "type": "finder", "value": "Muhammad Yudha - DJ"}], "timeline": [{"time": "2025-07-30T08:23:05.000Z", "lang": "en", "value": "Vendor Notified"}, {"time": "2025-08-04T17:57:49.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-08-05T15:56:42.013196Z", "id": "CVE-2025-8313", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-08-05T15:57:20.173Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-8313", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-08-05T15:56:42.013196Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-08-05T15:57:15.937Z"}}], "cna": {"title": "Campus Directory <= 1.9.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via noaccess_msg Parameter", "credits": [{"lang": "en", "type": "finder", "value": "Muhammad Yudha - DJ"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 6.4, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"}}], "affected": [{"vendor": "emarket-design", "product": "Campus Directory \u2013 Faculty, Staff & Student Directory Plugin for WordPress", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "1.9.1"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-07-30T08:23:05.000Z", "value": "Vendor Notified"}, {"lang": "en", "time": "2025-08-04T17:57:49.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/ee031b29-a334-4df4-8c03-4ffd306e38ea?source=cve"}, {"url": "https://plugins.svn.wordpress.org/campus-directory/tags/1.9.1/includes/emd-form-builder-lite/emd-form-frontend.php"}, {"url": "https://wordpress.org/plugins/campus-directory/#developers"}, {"url": "https://plugins.trac.wordpress.org/changeset/3337642"}], "descriptions": [{"lang": "en", "value": "The Campus Directory plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the \u2018noaccess_msg\u2019 parameter in all versions up to, and including, 1.9.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-79", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:31:42.325Z"}}}, "cveMetadata": {"cveId": "CVE-2025-8313", "state": "PUBLISHED", "dateUpdated": "2026-04-08T17:31:42.325Z", "dateReserved": "2025-07-29T20:14:47.379Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-08-05T06:39:49.155Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The Campus Directory plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the \u2018noaccess_msg\u2019 parameter in all versions up to, and including, 1.9.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}, {"lang": "es", "value": "El complemento Campus Directory para WordPress es vulnerable a cross-site scripting almacenado a trav\u00e9s del par\u00e1metro 'noaccess_msg' en todas las versiones hasta la 1.9.1 incluida, debido a una depuraci\u00f3n de entrada y un escape de salida insuficientes. Esto permite a atacantes autenticados, con acceso de colaborador o superior, inyectar scripts web arbitrarios en las p\u00e1ginas que se ejecutar\u00e1n al acceder un usuario a una p\u00e1gina inyectada."}], "id": "CVE-2025-8313", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 2.7, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2025-08-05T07:15:35.230", "references": [{"source": "security@wordfence.com", "url": "https://plugins.svn.wordpress.org/campus-directory/tags/1.9.1/includes/emd-form-builder-lite/emd-form-frontend.php"}, {"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/changeset/3337642"}, {"source": "security@wordfence.com", "url": "https://wordpress.org/plugins/campus-directory/#developers"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/ee031b29-a334-4df4-8c03-4ffd306e38ea?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-20T22:04:00.726162+00:00", "value": {"mitigation_remediation": ["Upgrade the Campus Directory plugin to any version newer than\u00a01.9.1, which contains the input\u2011sanitization fix.", "If an immediate upgrade is not possible, configure strict filtering or remove the noaccess_msg parameter from all front\u2011end forms to prevent unsanitized script storage.", "Reduce the privileges of Contributor\u2011level users or deny them content\u2011editing capabilities until the patch is applied."], "summary": {"action": "Patch", "impact": "Stored Cross\u2011Site Scripting via the noaccess_msg parameter"}, "threat_synthesis": {"affected_systems": "This vulnerability affects the emarket\u2011design Campus Directory \u2013 Faculty, Staff & Student Directory plugin for WordPress, in all releases up to and including version\u00a01.9.1.", "description_and_impact": "The Campus Directory WordPress plugin stores arbitrary JavaScript supplied through the noaccess_msg parameter when an authenticated user has Contributor or higher privileges. The injected code is executed whenever any visitor loads a page containing the value, creating a stored XSS flaw that can reveal sensitive information or alter user experience.", "risk_and_exploitability": "With a CVSS score of 6.4, the flaw is considered moderate. The EPSS score of less than\u00a01\u00a0% indicates that, so far, exploitation is unlikely, and it is not listed in CISA\u2019s KEV catalog. However, because the attack requires only Contributor\u2011level access, an attacker who can author or edit content can readily exploit the flaw. Based on the description, it is inferred that an attacker could exploit the stored script to steal credentials, deface content, or redirect users."}}}}, "created": "2025-08-05T21:23:01.857993+00:00", "updated": "2026-04-20T22:15:06.183323+00:00", "vendors": ["emarketdesign", "emarketdesign$PRODUCT$campus_directory", "wordpress", "wordpress$PRODUCT$wordpress"]}