WordPress SPNbabble 1.4.1 CSRF / XSS

16 dicembre 2014 - Fonte: http://www.mondounix.com
# Title: CSRF/XSS Vulnerability in SPNbabble WP Plugin 
# Author: Manideep K  
# CVE-ID:  CVE-2014-9339
# Plugin Homepage: https://wordpress.org/plugins/spnbabble/
# Version Affected: 1.4.1 (probably lower versions)
# Severity: High 
 
# About Plugin:
SPNbabble (http://spnbabble.sitepronews.com) allows users to create an account and post 140 character blogs with urls to send out messages to your followers. Through the professional setup of SPNbabble you can also auto connect to Twitter, Friendfeed, Plurk, Tumblr, Facebook, Zannel, Youare, Meemi & Utterli. This plugin once installed allows you to enter your SPNbabble user and password and you can choose which blog posts will be converted into mini blogs. Your blog turned into...

Leggi il seguito »

WordPress DandyID Services ID 1.5.9 CSRF / XSS

16 dicembre 2014 - Fonte: http://www.mondounix.com
# Title: CSRF/XSS Vulnerability in DandyID Services WP Plugin 
# Author: Manideep K  
# CVE-ID: CVE-2014-9335
# Plugin Homepage: https://wordpress.org/plugins/dandyid-services/
# Version Affected: 1.5.9 (probably lower versions)
# Severity: High 
 
# About Plugin:
DandyID is a free service that enables you to connect, manage, and share all of your online identities from a single location
 
# Description: 
# Vulnerable Parameter: email_address, sidebarTitle etc
# About Vulnerability: This plugin is vulnerable to a combination of CSRF/XSS attack meaning that if an admin user can be tricked to visit a crafted URL created by attacker (via spear phishing/social engineering), the attacker can insert arbitrary script into admin...

Leggi il seguito »

WordPress twitterDash 2.1 CSRF / XSS

16 dicembre 2014 - Fonte: http://www.mondounix.com
**************************************************************************************
# Title: CSRF / Stored XSS Vulnerability in twitterDash Wordpress Plugin 
# Author: Manideep K  
# CVE-ID: CVE-2014-9368
# Plugin Homepage: https://wordpress.org/plugins/twitterdash/
# Version Affected: 2.1 (probably lower versions)
# Severity: High 
 
#About Plugin:
twitterDash adds a field on the Dashboard. In this field you find the last(you can define how many) updates on the friends timeline of your twitter(http://www.twitter.com) account.You will see your friends profile images, usernames and updates, all the links that they have posted are active and the "@username" links to that users timeline. Enable the update panel and you...

Leggi il seguito »

WordPress iTwitter WP 0.04 CSRF / XSS

16 dicembre 2014 - Fonte: http://www.mondounix.com
# Title: CSRF/XSS Vulnerability in iTwitter WP Plugin 
# Author: Manideep K  
# CVE-ID: CVE-2014-9336
# Plugin Homepage: https://wordpress.org/plugins/itwitter/
# Version Affected: 0.04 (probably lower versions)
# Severity: High 
 
# Description: 
# Vulnerable Parameter: itex_t_twitter_username, itex_t_twitter_userpass etc
# About Vulnerability: This plugin is vulnerable to a combination of CSRF/XSS attack meaning that if an admin user can be tricked to visit a crafted URL created by attacker (via spear phishing/social engineering), the attacker can insert arbitrary script into admin page. Once exploited, admin’s browser can be made to do almost anything the admin user could typically do by hijacking admin's cookies etc. 
# Vulnerability...

Leggi il seguito »

WordPress WP Construction Mode 1.91 XSS

14 dicembre 2014 - Fonte: http://www.mondounix.com
Title: WordPress 'WP Construction Mode' plugin - XSS
Version: 1.91
Author: Morten Nørtoft, Kenneth Jepsen, Mikkel Vej
Date: 2014/12/12
Download: https://wordpress.org/plugins/wp-construction-mode/
Contacted vendor: 2014/10/20
----------------------------------------------------------------
 
## Plugin description: 
----------------------------------------------------------------
Set entire website or specific page under construction or maintenance for all viewers except Admin
 
 
## Reflected XSS:
----------------------------------------------------------------
the set_opt parameter is shown unsanitized to the admin user when saving, allowing the injection of arbitrary scripts and HTML.
 
Vulnerable code:
...

Leggi il seguito »

WordPress Simple Visitor Stat Cross Site Scripting

14 dicembre 2014 - Fonte: http://www.mondounix.com
Title: WordPress 'Simple Visitor Stat' plugin - Stored XSS
Reported by: Morten Nørtoft, Kenneth Jepsen, Mikkel Vej
Date: 2014/12/12
Download: https://wordpress.org/plugins/simple-visitor-stat/
----------------------------------------------------------------
 
## Description: 
----------------------------------------------------------------
Keep track of your site visitor's details like Country, IP, Referrer, User Agent, visit time. Its very light plugin that doesn't effect your page loading speed.Its simple and easy.
 
 
## Stored XSS:
----------------------------------------------------------------
When the plugin registers a page visit with a new IP (or an old IP visiting a new page) it stores the User agent and Referer...

Leggi il seguito »

WordPress Timed Popup 1.3 CSRF / XSS

14 dicembre 2014 - Fonte: http://www.mondounix.com
Title: WordPress 'Timed Popup' plugin - CSRF/XSS
Version: 1.3
Author: Morten Nørtoft, Kenneth Jepsen, Mikkel Vej
Date: 2014/12/12
Download: https://wordpress.org/plugins/wp-timed-popup/
Notified WordPress: 2014/11/27
----------------------------------------------------------------
 
## Description: 
----------------------------------------------------------------
WordPress popup is a timed popup box that shows up on your website, and can be used as a call to action to display products, sign up for newsletters, and mainly to get the attention of your website visitors in an appealing and non-intrusive manner. It has an options page which easily allows you to change the title, text, link and allows you to integrate your existing...

Leggi il seguito »

WordPress Sliding Social Icons 1.61 CSRF / XSS

14 dicembre 2014 - Fonte: http://www.mondounix.com
Title: WordPress 'Sliding Social Icons' plugin - CSRF/XSS
Version: 1.61
Reported by: Morten Nørtoft, Kenneth Jepsen, Mikkel Vej
Date: 2014/12/12
Download: https://wordpress.org/plugins/sliding-social-icons/
Notified WordPress: 2014/11/27
----------------------------------------------------------------
 
## Description: 
----------------------------------------------------------------
WordPress Sliding Widgets Plugin will help your to create a sliding icon list dynamically where you can place on your website. The icons slide into the screen when you hover over them. This plugin also allows you to enter a shortcode for a contact form or newsletter or any other shortcode, shows up in a sliding screen
 
## CSRF:
----------------------------------------------------------------
It...

Leggi il seguito »

WordPress WP-FB-AutoConnect 4.0.5 CSRF / XSS

14 dicembre 2014 - Fonte: http://www.mondounix.com
Title: WordPress 'WP-FB-AutoConnect' plugin - XSS/CSRF
Version: 4.0.5
Author: Morten Nørtoft, Kenneth Jepsen, Mikkel Vej
Date: 2014/12/12
Download: https://wordpress.org/plugins/wp-fb-autoconnect/
Contacted WordPress: 2014/11/27
----------------------------------------------------------------
 
## Description: 
----------------------------------------------------------------
The simple concept behind WP-FB AutoConnect is to offer an easy-to-use widget that lets readers login to your blog with either their Facebook account or local WordPress credentials. Although many "Facebook Connect" plugins do exist, most of them are either overly complex and difficult to customize, or fail to provide a seamless experience for new...

Leggi il seguito »

WordPress Lightbox Photo Gallery 1.0 CSRF / XSS

14 dicembre 2014 - Fonte: http://www.mondounix.com
Title: WordPress 'Lightbox Photo Gallery' plugin - CSRF/XSS
Version: 1.0
Author: Morten Nørtoft, Kenneth Jepsen, Mikkel Vej
Date: 2014/12/12
Download: https://wordpress.org/plugins/lightbox-photo-gallery/
Notified WordPress: 2014/11/27
----------------------------------------------------------------
 
## Description: 
----------------------------------------------------------------
Lighbox Photo Gallery will help you quickly and easily create an appealing photo gallery that opens in a lightbox. Use the settings page to select the images you want in your gallery and add the shortcode [ll-gallery] to the page or post where you want the gallery to show
 
## CSRF:
----------------------------------------------------------------
It...

Leggi il seguito »