948806b29c
11 changes to exploits/shellcodes SEIG Modbus 3.4 - Denial of Service (PoC) Zortam MP3 Media Studio 23.95 - Denial of Service (PoC) Restorator 1793 - Denial of Service (PoC) Prime95 29.4b7 - Denial Of Service (PoC) SEIG SCADA System 9 - Remote Code Execution SEIG Modbus 3.4 - Remote Code Execution Easylogin Pro 1.3.0 - Encryptor.php Unserialize Remote Code Execution WordPress Plugin Chained Quiz 1.0.8 - 'answer' SQL Injection MyBB Moderator Log Notes Plugin 1.1 - Cross-Site Request Forgery WordPress Plugin Tagregator 0.6 - Cross-Site Scripting Countly - Persistent Cross-Site Scripting
23 lines
No EOL
879 B
Text
23 lines
No EOL
879 B
Text
# Exploit Title: WordPress Plugin Tagregator 0.6 - Cross-Site Scripting
|
|
# Date: 2018-05-05
|
|
# Exploit Author: ManhNho
|
|
# Vendor Homepage: https://wordpress.org/plugins/tagregator/
|
|
# Software Link: https://downloads.wordpress.org/plugin/tagregator.0.6.zip
|
|
# Ref: https://pastebin.com/ZGr5tyP2
|
|
# Version: 0.6
|
|
# Tested on: CentOS 6.5
|
|
# CVE : CVE-2018-10752
|
|
# Category : Webapps
|
|
|
|
# 1. Description
|
|
# WordPress Plugin Tagregator 0.6 - Stored XSS
|
|
|
|
# 2. Proof of Concept
|
|
|
|
1. Login to admin panel
|
|
2. Access to Wordpress Tagregator setting, then choose Tweets/Instagram
|
|
Media/Flickr Post/Google+ Activities and click "Add New" button
|
|
3. In title field, inject XSS pattern such as:
|
|
<script>alert('xss')</script> and click Preview button
|
|
4. This site will response url that will alert popup named xss
|
|
5. Send this xss url to another administrators, we have same alert |