CVE-2025-47679 is a Cross-site Scripting (XSS) vulnerability classified under CWE-79, specifically a DOM-Based XSS, found in the RS WP Book Showcase plugin developed by RS WP THEMES. This vulnerability arises due to improper neutralization of input during web page generation, allowing malicious scripts to be injected and executed in the context of a victim's browser. The affected versions include all versions up to 6.7.40, with no specific earliest version identified. The vulnerability has a CVSS 3.1 base score of 6.5, indicating a medium severity level. The CVSS vector (AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L) shows that the attack can be launched remotely over the network with low attack complexity, requires low privileges, and user interaction is necessary. The scope is changed, meaning the vulnerability affects resources beyond the initially vulnerable component. The impact affects confidentiality, integrity, and availability at a low level. Although no known exploits are currently reported in the wild, the vulnerability could be leveraged to execute arbitrary scripts in users’ browsers, potentially leading to session hijacking, defacement, or redirection to malicious sites. The vulnerability is particularly relevant for websites using the RS WP Book Showcase plugin, which is a WordPress plugin used to display book showcases on websites, often used by publishers, authors, and book retailers. The lack of available patches at the time of publication increases the urgency for mitigation.

For European organizations, especially those in the publishing, media, and e-commerce sectors that utilize WordPress and specifically the RS WP Book Showcase plugin, this vulnerability poses a risk of client-side attacks. Successful exploitation could lead to theft of user credentials, session tokens, or other sensitive information, undermining user trust and potentially leading to regulatory non-compliance under GDPR due to data leakage. The integrity of website content could be compromised, affecting brand reputation. Availability impact is low but could manifest through user disruption or redirection to malicious sites. Given the interconnected nature of European digital markets and the high reliance on WordPress for content management, the vulnerability could facilitate targeted phishing campaigns or broader supply chain attacks if exploited at scale. The requirement for user interaction limits automated exploitation but does not eliminate risk, especially in phishing scenarios.

European organizations should immediately audit their WordPress installations to identify the presence of the RS WP Book Showcase plugin and its version. Until an official patch is released, organizations should consider disabling or removing the plugin if it is not critical. For sites where the plugin is essential, implementing Web Application Firewall (WAF) rules to detect and block suspicious input patterns related to DOM-based XSS can reduce risk. Content Security Policy (CSP) headers should be enforced to restrict script execution sources and mitigate the impact of injected scripts. Regular user education on phishing and suspicious links is recommended to reduce the risk of user interaction exploitation. Monitoring web logs for unusual query parameters or script injections can help detect attempted exploitation. Organizations should subscribe to vendor updates and apply patches promptly once available. Additionally, employing security plugins that sanitize user inputs and outputs can provide an additional layer of defense.