Description
The CSV to SortTable plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'csv' shortcode in all versions up to, and including, 4.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Published: 2025-11-18
Score: 6.4 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Stored Cross‑Site Scripting
Action: Update Plugin
AI Analysis

Impact

The CSV to SortTable WordPress plugin is vulnerable to stored cross‑site scripting through the csv shortcode. Insufficient input sanitization and output escaping allow an authenticated attacker, with Contributor or higher privileges, to inject arbitrary JavaScript that will execute whenever a page containing the injected content is viewed. This can lead to credential theft, session hijacking, or defacement of the site’s front‑end.

Affected Systems

WordPress sites that have the CSV to SortTable plugin installed in any version up to and including 4.2.

Risk and Exploitability

The CVSS score of 6.4 indicates a moderate severity vulnerability. The EPSS score is less than 1 %, implying a low probability of exploitation at this time, and the vulnerability is not listed in CISA’s KEV catalog. Because successful exploitation requires a Contributor‑level authenticated session, the attack surface is limited to users with that level of access. If such a role is granted, the stored XSS can compromise any viewer of the affected page.

Generated by OpenCVE AI on April 21, 2026 at 18:18 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade CSV to SortTable to the latest version (4.3 or later).
  • If the plugin is not required, completely remove it from the installation.
  • Restrict Contributor and similar roles from editing content that uses the csv shortcode, or enforce stricter input validation on the shortcode parameters.

Generated by OpenCVE AI on April 21, 2026 at 18:18 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 18 Nov 2025 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 18 Nov 2025 14:30:00 +0000

Type Values Removed Values Added
First Time appeared Wordpress
Wordpress wordpress
Vendors & Products Wordpress
Wordpress wordpress

Tue, 18 Nov 2025 08:45:00 +0000

Type Values Removed Values Added
Description The CSV to SortTable plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'csv' shortcode in all versions up to, and including, 4.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Title CSV to SortTable <= 4.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
Weaknesses CWE-79
References
Metrics cvssV3_1

{'score': 6.4, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N'}

Subscriptions

Wordpress Wordpress
cve-icon MITRE

Status: PUBLISHED

Assigner: Wordfence

Published:

Updated: 2026-04-08T16:53:10.941Z

Reserved: 2025-11-06T18:58:16.008Z

Link: CVE-2025-12823

cve-icon Vulnrichment

Updated: 2025-11-18T15:25:18.664Z

cve-icon NVD

Status : Deferred

Published: 2025-11-18T09:15:49.093

Modified: 2026-04-15T00:35:42.020

Link: CVE-2025-12823

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-21T18:30:27Z

Weaknesses