###################### # Exploit Title : Wordpress Bookmarkify Plug-in XSS/CSRF # Exploit Author : Ashiyane Digital Security Team # Vendor Homepage : https://wordpress.org/plugins/bookmarkify/ # Date: 2015-08-07 # Tested On : Kali Linux - FireFox # Software Link : https://downloads.wordpress.org/plugin/bookmarkify.zip # Version : 2.9.2 ###################### # Vulnerable Code: File: bookmarkify.php - Line 906 ###################### # Exploit:
###################### # Patch: File: bookmarkify.php - Line 906 ###################### # Discovered By : Mahdi.Hidden ######################