Vulners
Lucene search
WordPress Wordfence Firewall 5.1.2 Cross Site Scripting Vulnerability
| Reporter | Title | Published | Views | Family All 8 |
|---|---|---|---|---|
 | CVE-2014-4664 | 6 Nov 201415:00 | – | cve |
 | CVE-2014-4664 | 6 Nov 201415:00 | – | cvelist |
 | EUVD-2014-4586 | 7 Oct 202500:30 | – | euvd |
 | CVE-2014-4664 | 6 Nov 201415:55 | – | nvd |
 | WordPress Wordfence Security Plugin <= 5.1.3 - XSS | 26 Jun 201400:00 | – | patchstack |
 | Cross site scripting | 6 Nov 201415:55 | – | prion |
 | WordPress Wordfence Firewall 5.1.2 Cross Site Scripting | 1 Dec 201400:00 | – | securityvulns |
 | Wordfence <= 5.2.4 - Multiple Vulnerabilities (XSS & Bypasses) | 7 Oct 201416:26 | – | wpvulndb |
Product: Wordfence Firewall Plugin For Wordpress
Vendor: Wordfence
Vulnerable Version(s): 5.1.2
Tested Version: 5.1.2
Advisory Publication: June 30, 2014 [without technical details]
Vendor Notification: June 24, 2014
Vendor Patch: June 29, 2014
Public Disclosure: June 30, 2014
Vulnerability Type:Reflected Cross-Site Scripting
CVE Reference: CVE-2014-4664
Risk Level: High
Solution Status: Fixed by Vendor
---------------------------------------------------------------
Reported By - Narendra Bhati ( R00t Sh3ll)
Security Analyst @ Suma Soft Pvt. Ltd. , Pune ( India )IT Risk & Security Management Services , Pune ( India)
Facebook - https://facebook.com/narendradewsoft
twitter - https://www.twitter.com/NarendraBhatiNB
Blog - http://hacktivity.websecgeeks.com
Email - [email protected]
-----------------------------------------------------------------------------------------------
Advisory Details:
Narendra Bhati discovered vulnerability in Wordfence Firewall Plugin For Wordpress , which can be exploited to perform Cross-Site Scripting (XSS) attacks.
1) Reflected Cross-Site Scripting (XSS) in Wordfence Firewall Plugin For Wordpress : CVE-2014-4664
The vulnerability exists due to insufficient sanitization of input data passed via the "whoisval" HTTP GET parameter to "http://127.0.0.1/wp-admin/admin.php?page=WordfenceWhois&whoisval=" URL. A remote attacker can trick a logged-in administrator to open a specially crafted link and execute arbitrary HTML and script code in browser in context of the vulnerable website.
This vulnerability can be used against website administrator to perform phishing attacks, steal potentially sensitive data and gain complete control over web application.
The exploitation example below uses the "";</script><script>alert(/Oooppps !!! Bhati Got A XSS In WordPress Popular Firewall Plugin Word Fence /)</script>" JavaScript function to display "Oooppps !!! Bhati Got A XSS In WordPress Popular Firewall Plugin Word Fence" word:
http://127.0.0.1/wp-admin/admin.php?page=WordfenceWhois&whoisval=";</script><script>alert(/Oooppps !!! Bhati Got A XSS In WordPress Popular Firewall Plugin Word Fence /)</script>
-----------------------------------------------------------------------------------------------
Solution:
Update to " 5.1.4" From his official website or update from wordpress dashboard
# 0day.today [2018-02-09] #Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
05 Nov 2014 00:00Current
6Medium risk
Vulners AI Score6
EPSS0.00664