Description
The MinhNhut Link Gateway plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'url' parameter on the redirect page in all versions up to, and including, 3.6.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.
Published: 2026-05-27
Score: 6.1 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability allows an unauthenticated attacker to inject arbitrary JavaScript via the *url* parameter on the plugin’s redirect page. Because the input is neither sanitized nor escaped, the malicious script is reflected back to the victim’s browser. If a user clicks a crafted link, the payload executes in the victim’s context, enabling session hijacking, cookie theft, or phishing attacks. This flaw maps to CWE‑79, a classic reflected cross‑site scripting weakness.

Affected Systems

All instances of the MinhNhut Link Gateway WordPress plugin with versions up to and including 3.6.1 are affected. No other products or versions are known to contain this flaw.

Risk and Exploitability

The CVSS score of 6.1 places the issue in the medium severity range. EPSS data is not available, so the current exploitation probability is unknown, and the vulnerability is not listed in the CISA KEV catalog. Attackers would most likely use a socially engineered link that leads a victim’s browser to the vulnerable redirect page. Because the flaw is input‑based and does not require privileged access, the risk is moderate but still warrants prompt remediation.

Generated by OpenCVE AI on May 27, 2026 at 11:31 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the MinhNhut Link Gateway plugin to the latest version that addresses the XSS flaw (version 3.6.2 or later).
  • If an immediate update is not possible, disable or remove the redirect feature or restrict access to the affected endpoint until a patch is applied.
  • Audit the WordPress site for similar unsanitized input points and enforce proper escaping (e.g., using esc_url() or wp_filter_nohtml_kses()).
  • Run a security scan or penetration test to confirm that no other reflected XSS vectors remain.

Generated by OpenCVE AI on May 27, 2026 at 11:31 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 27 May 2026 12:15:00 +0000

Type Values Removed Values Added
First Time appeared Minhnhut
Minhnhut minhnhut Link Gateway
Wordpress
Wordpress wordpress
Vendors & Products Minhnhut
Minhnhut minhnhut Link Gateway
Wordpress
Wordpress wordpress

Wed, 27 May 2026 10:30:00 +0000

Type Values Removed Values Added
Description The MinhNhut Link Gateway plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'url' parameter on the redirect page in all versions up to, and including, 3.6.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.
Title MinhNhut Link Gateway <= 3.6.1 - Reflected Cross-Site Scripting via 'url' Parameter
Weaknesses CWE-79
References
Metrics cvssV3_1

{'score': 6.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N'}

Subscriptions

Minhnhut Minhnhut Link Gateway
Wordpress Wordpress
cve-icon MITRE

Status: PUBLISHED

Assigner: Wordfence

Published:

Updated: 2026-05-27T09:27:31.605Z

Reserved: 2026-02-27T16:28:02.856Z

Link: CVE-2026-3349

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-05-27T11:16:18.593

Modified: 2026-05-27T11:16:18.593

Link: CVE-2026-3349

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-27T12:15:05Z

Weaknesses