636 matches found
CVE-2017-17780
The Clockwork SMS clockwork-test-message.php component has XSS via a crafted "to" parameter in a clockwork-test-message request to wp-admin/admin.php. This component code is found in the following WordPress plugins: Clockwork Free and Paid SMS Notifications 2.0.3, Two-Factor Authentication -...
Design/Logic Flaw
The Clockwork SMS clockwork-test-message.php component has XSS via a crafted "to" parameter in a clockwork-test-message request to wp-admin/admin.php. This component code is found in the following WordPress plugins: Clockwork Free and Paid SMS Notifications 2.0.3, Two-Factor Authentication -...
CVE-2017-17780
The Clockwork SMS clockwork-test-message.php component has XSS via a crafted "to" parameter in a clockwork-test-message request to wp-admin/admin.php. This component code is found in the following WordPress plugins: Clockwork Free and Paid SMS Notifications 2.0.3, Two-Factor Authentication -...
CVE-2017-17780
The Clockwork SMS clockwork-test-message.php component has XSS via a crafted "to" parameter in a clockwork-test-message request to wp-admin/admin.php. This component code is found in the following WordPress plugins: Clockwork Free and Paid SMS Notifications 2.0.3, Two-Factor Authentication -...
Clockwork SMS Cross Site Scripting
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Discoverer: Elias Dimopoulos Linkedin: https://gr.linkedin.com/in/dimopouloselias Vulnerability Type: Reflected XSS via GET parameter "to". Vendor of the affected plugins: https://www.clockworksms.com/plugins/ Affected Plugins:...
WPSploit - WordPress Plugin Code Scanner
This tool is intended for Penetration Testers who audit WordPress plugins or developers who wish to audit their own WordPress plugins. For more info click here. Usage $ git clone https://github.com/m4ll0k/wpsploit.git $ cd wpsploit $ python wpsploit.py pluginfile.php or $ wget...
Referrer Detector <= 4.2.1.0 - Unauthenticated PHP Object Injection
The plugin referrer-detector insecurely trusts serialized data submitted over HTTP requests. This opens up the site to a PHP object injection vulnerability potential exploit vector. The original researcher notified the WordPress Plugins team. PoC Attack is exploitable over HTTP requests to sites...
Gravitate QA Tracker <= 1.2.1 - Unauthenticated PHP Object Injection
The plugin gravitate-qa-tracker insecurely trusts serialized data submitted over HTTP requests. This opens up the site to a PHP object injection vulnerability potential exploit vector. PoC Attack is exploitable over HTTP requests to sites with the gravitate-qa-tracker Plugin. The original...
Gravitate QA Tracker <= 1.2.1 - Unauthenticated PHP Object Injection
The plugin gravitate-qa-tracker insecurely trusts serialized data submitted over HTTP requests. This opens up the site to a PHP object injection vulnerability potential exploit vector. Attack is exploitable over HTTP requests to sites with the gravitate-qa-tracker Plugin. The original researcher...
AJAX Random Posts <= 0.3.3 - Unauthenticated PHP Object Injection
The plugin ajax-random-posts insecurely trusts serialized data submitted over HTTP requests. This opens up the site to a PHP object injection vulnerability potential exploit vector. The original researcher notified WordPress Plugins team. PoC Attack is exploitable over AJAX calls on sites with th...
My Geo Posts Free <= 1.2 - Unauthenticated PHP Object Injection
The plugin my-geo-posts-free insecurely trusts serialized data submitted over HTTP requests. This opens up the site to a PHP object injection vulnerability potential exploit vector. Attack is exploitable over HTTP requests to sites with the my-geo-posts-free Plugin. The original researcher notifi...
NextGEN Gallery geo <= 1.0 - Unauthenticated PHP Object Injection
The plugin nextgen-gallery-geo insecurely trusts serialized data submitted over AJAX requests. This opens up the site to a PHP object injection vulnerability potential exploit vector. The original researcher notified the WordPress Plugins team. PoC Attack is exploitable over AJAX calls sites with...
CVE-2015-7377
The CVE-2015-7377 vulnerability affects WordPress Pie Register plugin versions before 2.0.19, where an unsanitized invitaion_code parameter in pie-register.php enables reflected XSS. The root cause is improper handling of the GET parameter, allowing injection of arbitrary script/HTML. Impact is r...
Multiple Cross-Site Scripting Vulnerabilities in Multiple WordPress Plugins
WordPress is a blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. Multiple cross-site scripting vulnerabilities exist in several WordPress plugins due to the program failing to adequately filter user-supplied input. An attacker is...
CVE-2014-9735
The ThemePunch Slider Revolution revslider plugin before 3.0.96 for WordPress and Showbiz Pro plugin 1.7.1 and earlier for Wordpress does not properly restrict access to administrator AJAX functionality, which allows remote attackers to 1 upload and execute arbitrary files via an updateplugin...
CVE-2014-9397
Cross-site request forgery CSRF vulnerability in the twimp-wp plugin for WordPress allows remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting XSS attacks via the messageformat parameter in the twimp-wp.php page to...
WordPress Simple Visitor Stat Cross Site Scripting
Title: WordPress 'Simple Visitor Stat' plugin - Stored XSS Reported by: Morten Nørtoft, Kenneth Jepsen, Mikkel Vej Date: 2014/12/12 Download: https://wordpress.org/plugins/simple-visitor-stat/ ---------------------------------------------------------------- Description:...
Wordpress Plugins Premium Gallery Manager Unauthenticated Configuration Access Vulnerability
Exploit for php platform in category web applications Exploit Title : Wordpress Plugins Premium Gallery Manager Unauthenticated Configuration Access Vulnerability Author : Hannaichi @dntkun Date : February 5th, 2014 Type : php, html, htm, asp, etc. Category : Web Applications Vulnerability :...
Wordpress Easy Contact Forms Export Plugin 1.1.0 Information Disclosure Vulnerability
No description provided by source. Description : Wordpress Plugins - Easy Contact Forms Export Information Disclosure Vulnerability Version : 1.1.0 Link : http://wordpress.org/extend/easy-contact-forms-exporter/ Plugins : http://downloads.wordpress.org/plugin/easy-contact-forms-exporter.zip Date ...
Wordpress Fancy Gallery Plugin 1.2.4 - Arbitrary File Upload
No description provided by source. Description : Wordpress Plugins - Fancy Gallery Arbitrary File Upload Vulnerability Version : 1.2.4 link : http://codecanyon.net/item/fancy-gallery-wordpress-plugin/400535 Price : 18$ Date : 22-06-2012 Google Dork : inurl:/wp-content/plugins/radykal-fancy-galler...