Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

nextgen-xss.txt

šŸ—“ļøĀ 09 Jun 2008Ā 00:00:00Reported byĀ Eduardo NevesTypeĀ 
packetstorm
Ā packetstormšŸ”—Ā packetstormsecurity.comšŸ‘Ā 23Ā Views

Vulnerability in Nextgen gallery 0.96 wordpress plugin with XSS impact

Show more
Code
`==============================  
  
XSS - Nextgen gallery 0.96 wordpress plugin  
  
==============================  
  
Author: Eduardo Neves a.k.a _eth0_  
Date: 07 june 2008  
Site: webappsecurity.wordpress.com  
  
Ā—Ā—Ā—Ā—Ā—Ā—Ā—Ā—Ā—Ā—Ā—Ā—Ā—  
  
APPLICATION : Nextgen gallery  
VERSION : <= 0.96  
VENDOR : http://wordpress.org/extend/plugins/nextgen-gallery/  
DOWNLOAD : http://wordpress.org/extend/plugins/nextgen-gallery/  
  
Ā—Ā—Ā—Ā—Ā—Ā—Ā—Ā—Ā—Ā—Ā—Ā—Ā—  
  
IMPACT: XSS, XSRF, etc .  
  
Ā—Ā—Ā—Ā—Ā—Ā—Ā—Ā—Ā—Ā—Ā—Ā—Ā—  
  
Descrition:  
  
This vulnerability can be explored writing in the descritption textbox  
a mailicous (or not) code  
  
link: http://[host]/[directory]/wp-admin/admin.php?page=nggallery-manage-gallery&mode=edit&gid=[galleryID]&_wpnonce=0b3c0996ed  
  
In the description textbox write the text:  
  
<script>alert('xss');</script>  
  
And when the gallery was posted, user click in photo and the script  
was executed!  
  
--   
|_|0|_| Serrano Neves - a.k.a eth0  
|_|_|0| http://webappsecurity.wordpress.com  
|0|0|0| "Talk is cheap. Show me the code." - Linus Torvalds  
`

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. ContactĀ us for a demo andĀ discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
09 Jun 2008 00:00Current
7.4High risk
Vulners AI Score7.4
nextgen galleryxssxsrfwordpressmalicious codevulnerabilityadmin page
23
.json
Report