Lucene search
CVE 0dayCVE0DAY:027FAA6377BDCD23F2F4840CF7E2785AHistoryMar 07, 2019 - 1:41 p.m.
WordPress Blog2Social plugin CVE-2019-9576 XSS
2019-03-0713:41:06
CVE 0day
www.cve0day.com
75
0.002 Low
EPSS
Percentile
52.9%
Description
The Blog2Social WordPress plugin is vulnerable to reflected XSS as it echoes the b2s_update_publish_date parameter without proper encoding.
Successful exploitation allows an attacker to execute JavaScript in the context of the application in the name of an attacked user. This in turn enables an attacker to bypass CSRF protection and thus perform any actions the legitimate user can perform, as well as read data which the user can access.
Proof of Concept
http://192.168.0.103/wordpress/wp-admin/admin.php?page=blog2social-ship&postId=70&b2s_action=1&b2s_update_publish_date='"><img src>
Code
blog2social/includes/Loader.php:
echo '<div><p>' . __('This post will be shared into your social media on', 'blog2social') . ' ' . $_GET['b2s_update_publish_date'] . ' <a target="_blank" href>' . __('show details', 'blog2social') . '</a></p></div>';
WordPress Blog2Social plugin CVE-2019-9576 XSS最先出现在CVE 0day。
Related
wpexploit
wpexploit
Blog2Social <= 5.0.2 - Authenticated Cross-Site Scripting (XSS)
2019-02-05 00:00:00
wpvulndb
wpvulndb
Blog2Social <= 5.0.2 - Authenticated Cross-Site Scripting (XSS)
2019-02-05 00:00:00
cve
cve
CVE-2019-9576
2019-03-05 21:29:01
prion
prion
Cross site scripting
2019-03-05 21:29:00
cvelist
cvelist
CVE-2019-9576
2019-03-05 21:00:00
nvd
nvd
CVE-2019-9576
2019-03-05 21:29:01
openvas
openvas
WordPress Blog2Social Plugin < 5.0.3 XSS Vulnerability
2019-05-13 00:00:00
patchstack
patchstack