WordPress Social Ring plugin versions 1.0 through 1.1.9 suffer from a cross site scripting vulnerability.
f2bc5ff0e51408bc5046a10752b236f95ce7898e362f2b13bd030293f6144837######################
# Exploit Title : Wordpress social ring Cross Site Scripting
# Exploit Author : Ashiyane Digital Security Team
# Vulnerable version : 1.0 up to 1.1.9
# Software Link :
http://downloads.wordpress.org/plugin/wordpress-social-ring.1.1.9.zip
# Date : 2014-01-18
# Tested on : Windows 7
# discovered by : ACC3SS
######################
#
# Vulnerability code : <?php echo $_GET['url']; ?>
#
######################
#
# Location :
localhost/wp-content/plugins/wordpress-social-ring/includes/share.php?url=[Xss]
#
######################
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed