Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

WordPress Dexs PM System Cross Site Scripting

🗓️ 16 Oct 2013 00:00:00Reported by TheXeroType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 19 Views

Dexs PM System - Persistent Cross Site Scripting Vulnerability in WordPres

Code
`===============================================================================  
| |  
____ _ __  
___ __ __/ / /__ ___ ______ ______(_) /___ __  
/ _ \/ // / / (_-</ -_) __/ // / __/ / __/ // /  
/_//_/\_,_/_/_/___/\__/\__/\_,_/_/ /_/\__/\_, /  
/___/ team  
  
PUBLIC SECURITY ADVISORY  
| |  
===============================================================================  
  
  
TITLE  
=====  
  
Dexs PM System - Authenticated Persistent Cross Site Scripting Vulnerability  
  
  
AUTHOR  
======  
  
TheXero  
  
  
DATE  
====  
  
10/14/2013  
  
VENDOR  
======  
  
Sam Brishes - http://www.pytes.net/  
  
  
AFFECTED PRODUCT  
================  
  
Dexs PM System Wordpress Plugin Version 1.0.1 possibly earlier  
  
  
VULNERABILITY CLASS  
===================  
  
Cross-Site Scripting  
  
  
DESCRIPTION  
===========  
  
  
Dexs PM System suffers from a persistent Cross-Site Scripting vulnerability  
when sending a message as an authenticated user. An account of at least  
subscriber status is requested to exploit this vulnerability.  
This vulnerability exists due to a lack of input validation and output  
sanitization of the subject paramater.  
  
  
PROOF OF CONCEPT  
================  
  
Enter the following into the subject field when sending a message to another  
user.  
  
--- SNIP ---  
  
XSS<script>alert('xss');</script>  
  
--- SNIP ---  
  
If the message has been sent successfully a alert diolog will apear containing  
xss when an user checks there message in the dashboard.  
  
  
IMPACT  
======  
  
An attacker could potentially hijack session authentication tokes of remote  
users and leverage the vulnerability to increase the attack vector to the  
underlying software and operating system of the victim.  
  
  
THREAT LEVEL  
============  
  
High  
  
  
STATUS  
======  
  
0day  
  
  
DISCLAIMER  
==========  
  
nullsecurity.net hereby emphasize, that the information which is published here  
are for education purposes only. nullsecurity.net does not take any  
responsibility for any abuse or misusage!  
  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
16 Oct 2013 00:00Current
7.4High risk
Vulners AI Score7.4
cross-site scriptingwordpress plugininput validationoutput sanitizationauthenticated usersubscriber statushijack session authentication0day
19