[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Multiple Reflected XSS in ResAds version 1.0.1 WordPress plugin

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Multiple Reflected XSS in ResAds version 1.0.1 WordPress plugin
From: ibemed@xxxxxxxxx
Date: Sun, 4 Oct 2015 18:05:26 GMT

Vulnerability title: Multiple Reflected XSS in ResAds version 1.0.1 WordPress 
plugin
CVE: CVE-2015-7667
Vendor: WordPress web-mv
Product: ResAds
Affected version: 1.0.1
Fixed version: 1.0.2
Reported by: Ibéria Medeiros

Vulnerability Details:
=====================
It was discovered that no protection against multiple reflected XSS attacks was 
implemented, resulting in an attacker being able to retrive user data from end 
user, such as session cookies.

The ResAds version 1.0.1 WordPress plugin is vulnerable to 2 reflected XSS 
vulnerabilities.
The templates/admanagement/admanagement.php and templates/adspot/adspot.php 
files are vulnerable to Cross-site.scripting (XSS) attacks via 
$_REQUEST['page'] parameter.

System affected:
===============
Any system that access to a web site developed by WordPress CMS version 4.3.1 
or earlier and uses the ResAds version 1.0.1.

Advisory:
========
https://wordpress.org/plugins/resads/changelog/

Solution:
========
Update to ResAds version 1.0.2 plugin.
https://wordpress.org/plugins/resads/

Disclosure Timeline:
===================
Vendor notification: September 27, 2015
Vendor fixed vulnerability: September 29, 2015
Public advisory: September 29, 2015
Public disclosure: October 4, 2015

Prev by Date: A Reflected XSS in Easy2Map version 1.2.9 WordPress plugin
Next by Date: Multiple Reflected XSS in Payment Form for PayPal Pro version 1.0.1 WordPress plugin
Previous by thread: A Reflected XSS in Easy2Map version 1.2.9 WordPress plugin
Next by thread: Multiple Reflected XSS in Payment Form for PayPal Pro version 1.0.1 WordPress plugin
Index(es):
- Date
- Thread