Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpexploitJames HookerWPEX-ID:46BF6C69-B612-4AEE-965D-91F53F642054
HistoryJul 07, 2015 - 12:00 a.m.

NewStatPress <= 1.0.4 - Reflected Cross-Site Scripting (XSS)

2015-07-0700:00:00
James Hooker
17

0.001 Low

EPSS

Percentile

37.8%

JSON

The NewStatPress plugin utilizes on lines 28 and 31 of the file ‘includes/nsp_search.php’ several variables from the $_GET scope, without sanitation. While WordPress automatically escapes quotes on this scope, the outputs on these lines are outside of quotes, and as such can be utilized to trigger a Reflected XSS attack.

The following URL will trigger an alert box in FireFox when visited, should the user be logged in as an Administrative user.

http://localhost/wp-admin/admin.php?groupby1=checked%3E%3Cimg+src%3Dx+onerror%3Dalert%281%29&page=nsp_search&newstatpress_action=search

Related

prion 1
nuclei 1
cve 1
cvelist 1
nvd 1
wpvulndb 1
openvas 1
prion
prion
Design/Logic Flaw
2019-08-14 15:15:00
nuclei
nuclei
NewStatPress <=1.0.4 - Cross-Site Scripting
2023-03-05 13:42:10
cve
cve
CVE-2015-9312
2019-08-14 15:15:11
cvelist
cvelist
CVE-2015-9312
2019-08-14 14:54:08
nvd
nvd
CVE-2015-9312
2019-08-14 15:15:11
wpvulndb
wpvulndb
NewStatPress <= 1.0.4 - Reflected Cross-Site Scripting (XSS)
2015-07-07 00:00:00
openvas
openvas
WordPress NewStatPress Plugin < 1.0.5 Multiple Vulnerabilities
2019-08-27 00:00:00

0.001 Low

EPSS

Percentile

37.8%

JSON
Related for WPEX-ID:46BF6C69-B612-4AEE-965D-91F53F642054
prion1nuclei1cve1cvelist1nvd1wpvulndb1openvas1