exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

WordPress Testimonial Slider 1.2.1 Cross Site Scripting

WordPress Testimonial Slider 1.2.1 Cross Site Scripting
Posted Aug 31, 2015
Authored by Arash Khazaei

WordPress Testimonial Slider plugin version 1.2.1 suffers from a stored cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | c42a3e7a53fa032347f8db34ca336504c038103182ac19af39975cd7d2507601

WordPress Testimonial Slider 1.2.1 Cross Site Scripting

Change Mirror Download
     GhostMail    <!--

# Exploit Title: Wordpress Testimonial Slider Stored XSS

# Date: 2015/8/31

# Exploit Author: Arash Khazaei

# Vendor Homepage: https://wordpress.org/plugins/testimonial-slider/

# Software Link:
https://downloads.wordpress.org/plugin/testimonial-slider.1.2.1.zip

# Version: 1.2.1

# Tested on: Kali , Iceweasel Browser

# CVE : N/A

# Contact : twitter.com/0xClay

# Email : junkyboy@ghostmail.com

# Site : http://bhunter.ir

# Intrduction :

# Wordpress Testimonial Slider Plugin Have 10,000+ Active Install

# And Suffer From A Stored XSS Vulnerability In Slider Name Section .

# Authors , Editors And Of Course Administrators Can Use This Vulnerability
To Harm WebSite .

-->

Exploit :

For Exploiting This Vulnerability Install Testimonial Slider Plugin

Then Create New Slider In Slider Name Input Place Your JavaScript Code

After Creating Slider JavaScript Code Will Be Executed .

Image POC :



Vulnerable Code :

<h3><?php _e('Reorder the Posts/Pages Added To','testimonial-slider'); ?>
<?php echo $slider['slider_name'];?>(Slider ID = <?php echo
$slider['slider_id'];?>)</h3>

For Patching :

<h3><?php _e('Reorder the Posts/Pages Added To','testimonial-slider'); ?>
<?php echo htmlspecialchars($slider['slider_name']);?>(Slider ID = <?php
echo $slider['slider_id'];?>)</h3>

<!-- Discovered By Arash Khazaei (Aka JunkyBoy) -->

This email was sent from Secure GhostMail <https://www.ghostmail.com>.
Easy and free encrypted email, chat and cloud storage for everybody. Free
sign up now <https://www.ghostmail.com>.
Login or Register to add favorites

File Archive:

October 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    10 Files
  • 2
    Oct 2nd
    0 Files
  • 3
    Oct 3rd
    12 Files
  • 4
    Oct 4th
    15 Files
  • 5
    Oct 5th
    18 Files
  • 6
    Oct 6th
    16 Files
  • 7
    Oct 7th
    0 Files
  • 8
    Oct 8th
    0 Files
  • 9
    Oct 9th
    0 Files
  • 10
    Oct 10th
    0 Files
  • 11
    Oct 11th
    0 Files
  • 12
    Oct 12th
    0 Files
  • 13
    Oct 13th
    0 Files
  • 14
    Oct 14th
    0 Files
  • 15
    Oct 15th
    0 Files
  • 16
    Oct 16th
    0 Files
  • 17
    Oct 17th
    0 Files
  • 18
    Oct 18th
    0 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close