Vulners
Lucene search
WordPress Plugin w3-total-cache Stored XSS Vulnerability
Steps to Produce the Vulnerability :
1) Go to Dashboard.
2) Click on Installed Plugins.
3) Go to W3-Total-Cache Plugin and Click on settings.
4) Go to Reverse Proxy and Click on page cache settings.
5) Go to Cache Preload and Type Vector - "><img src=x onerror=prompt(0);>. in Sitemap URL and Click on Save.
6) You will get a Prompt as a proof of XSS Vulnerability.
Go back to any page and come to this page again, and its there. Its Stored XSS Vulnerability.
More Information and Video Demonstration is available at -
http://tusharkumbhare2050.blogspot.in/2013/09/wordpress-w3-total-cache-plugin-09211.html
Reach me at Facebook - https://www.facebook.com/heartstlear
Reach me at twitter - https://www.twitter.com/tush2388
Reach me at LinkedIn - http://www.linkedin.com/pub/tushar-kumbhare/69/8a7/9b8
Thanks.
Happy Hacking :)
# 0day.today [2018-01-02] #Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
08 Sep 2013 00:00Current
7.1High risk
Vulners AI Score7.1