# Exploit Title: Wordpress wp-downloadmanager stored XSS # Date: 2015/9/10 # Exploit Author: Iran Security Group # Vendor Homepage: https://wordpress.org/plugins/wp-downloadmanager/ # Software Link: https://downloads.wordpress.org/plugin/wp-downloadmanager.1.66.zip # Version: 1.66 # Tested on: windows 8 /FireFox #################################################### #Exploit : For Exploiting This Vulnerability You Should Install wp-downloadmanager Plugin Add New file : http://site/wp-admin/admin.php?page=wp-downloadmanager%2Fdownload-add.php In "File Name" and "File Description" feild Can Input Place Your JavaScript Code and click on Add File . Execute javascript Codes in "Manage Downloads" . http://site/wp-admin/admin.php?page=wp-downloadmanager%2Fdownload-manager.php http://Iransec.Net/ ./Sadegh