Wordpress popup-maker Stored XSS

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1041203 漏洞类型
发布时间 2015-09-29 更新时间 2015-09-29
CVE编号 N/A CNNVD-ID N/A
漏洞平台 N/A CVSS评分 N/A
|漏洞来源
https://cxsecurity.com/issue/WLB-2015090188
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
####################################################
# Exploit Title: Wordpress popup-maker Stored XSS
# Date: 2015/9/27
# Exploit Author: Iran Security Group
# Vendor Homepage: https://wordpress.org/plugins/popup-maker/
# Software Link: https://downloads.wordpress.org/plugin/popup-maker.1.3.7.zip
# Version: 1.3.7
# Tested on: windows 8 /FireFox
####################################################

#Exploitation :

For Exploiting This Vulnerability You Should Install popop-maker Plugin
Add New Popup : http://site/wp-admin/post-new.php?post_type=popup
In "Popup_title" feild Can Input Place Your JavaScript Code and click on "publish" .
Execute javascript Codes in "All popups" page :
http://site/wp-admin/edit.php?post_type=popup

{ you can steal admin cookie with moderator access }


####################################################
# http://iransec.net/forums
#  Root Smasher , N-Kod , Mr.Moein , hekt0r , umpire , Sadegh , ALIREZA_PROMIS
#  Saeed.jok3r , m4hdi , R3ZA-CYB3R , ataturk 1925 , social engineer and all ISG Member
#   FR : Sir.H4m1d
#       [+] fb.com/alirezapomis.blackhat
####################################################