Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Wordpress Comments Import & Export Plugin < 2.0.4 - CSV Injection Vulnerability

🗓️ 25 Jun 2018 00:00:00Reported by Bhushan PatilType 
zdt
 zdt🔗 0day.today👁 27 Views

Wordpress Comments Import & Export Plugin < 2.0.4 - CSV Injection Vulnerability. Allows remote command execution using CSV injection

Related
Code
ReporterTitlePublishedViews
Family
CNVD		WordPress Comments Import & Export CSV Injection Vulnerability
20 Jun 201800:00
cnvd
CVE		CVE-2018-11526
19 Jun 201819:00
cve
Cvelist		CVE-2018-11526
19 Jun 201819:00
cvelist
Exploit DB		WordPress Plugin Comments Import &amp; Export &lt; 2.0.4 - CSV Injection
25 Jun 201800:00
exploitdb
EUVD		EUVD-2018-3555
7 Oct 202500:30
euvd
exploitpack		WordPress Plugin Comments Import Export 2.0.4 - CSV Injection
25 Jun 201800:00
exploitpack
NVD		CVE-2018-11526
19 Jun 201819:29
nvd
Packet Storm		WordPress Comments Import And Export CSV Injection
25 Jun 201800:00
packetstorm
Patchstack		WordPress Comments Import & Export plugin <= 2.3.1 - CSV Injection vulnerability
22 Jun 201800:00
patchstack
Prion		Input validation
19 Jun 201819:29
prion
Rows per page
# Exploit Title: Wordpress Plugin Comments Import & Export < 2.0.4 - CSV Injection
# Exploit Author: Bhushan B. Patil
# Software Link: https://wordpress.org/plugins/comments-import-export-woocommerce/
# Affected Version: 2.0.4 and before
# Category: Plugins and Extensions
# Tested on: WiN7_x64
# CVE: CVE-2018-11526
 
# 1. Application Description:
# Comments Import Export Plugin helps you to easily export and import Article and Product Comments in your store.
 
# 2. Technical Description:
# WordPress Comments Import & Export plugin version 2.0.4 and before are affected by the vulnerability Remote Command Execution
# using CSV Injection. This allows a public user to inject commands as a part of form fields and when a user with
# higher privilege exports the form data in CSV opens the file on their machine, the command is executed.
 
# 3. Proof Of Concept:
Enter the payload @SUM(1+1)*cmd|' /C calc'!A0 in the form fields and submit.
When high privileged user logs into the application to export form data in CSV and opens the file.
Formula gets executed and calculator will get popped in his machine.

#  0day.today [2018-06-25]  #

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
25 Jun 2018 00:00Current
0.1Low risk
Vulners AI Score0.1
EPSS0.0213
wordpresscomments import exportplugincsv injectionvulnerabilityremote command executionform datahigh privilegeexploit
27