WordPress Gallery Master plugin version 1.0.22 suffers from a persistent cross site scripting vulnerability.
125e65f3414e32a56870065345499c7ecdcb1682aa4ebdfd986de2b0949e860f<!--
# Exploit Title: Wordpress Gallery Master Presistent XSS Vulnerability.
# Date: 2015/12/20
# Exploit Author: Arash Khazaei
# Vendor Homepage: https://downloads.wordpress.org/plugin/gallery-master.zip
# Software Link: https://wordpress.org/plugins/gallery-master/ &
https://tech-prodigy.org/
# Version: 1.0.22
# Tested on: Windows , Firefox Browser
# CVE : N/A
# Email : 0xclay@gmail.com
# Intrduction :
# Wordpress Master Gallery Plugin Have 1,000+ Active Install
# And Suffer From A Stored XSS Vulnerability In Gallery Title &
Gallery Description In Add New Gallery Section.
# Authors , Editors And Of Course Administrators Can Use This
Vulnerability To Harm WebSite .
-->
Exploit :
For Exploiting This Vulnerability Install Testimonial Slider Plugin
Then Create New SGallery In Gallery Title Input And Gallery
Description Place Your JavaScript Code
After Creating Gallery JavaScript Code Will Be Executed . Plugin Is
Accessable By Authors , Administartors , Editors .
Image POC :
https://i.imgur.com/bHoezPa.jpg
Vulnerable Codes
<\gallery-master\views\galleries\manage_galleries.php>[Line : 177]:
1- <label class="gallery_text_italic"><?php echo
urldecode($row["gallery_title"]);?></label>
2- <label class="gallery_text_italic"><?php echo
urldecode($row["gallery_description"]);?></label>
<!-- Discovered By Arash Khazaei (A.K.A 0xClay) -->
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed