Alerts

1

Old WP-Forum Vulnerability Gets Disclosed

Posted by DK
January 27, 2009

An vulnerability for Fredrik Fahlstad’s WP-Forum Plugin has been made public on milw0rm. The exploit appears to affect an older version (1.7.8) of the popular WordPress plugin.

The plugins homepage is already on version 2.2. This means this vulnerability was probably discovered shortly after the initial version 1.7.4 vulnerability reported by BlogSecurity in early 2008.

As [...]

1

WordPress 2.6.2 Snoopy Vulnerability

Posted by DK
November 1, 2008

WordPress announced the following vulnerability in WordPress 2.6.2:

A vulnerability in the Snoopy library was announced today.  WordPress uses Snoopy to fetch the feeds shown in the Dashboard. Although this seems to be a low risk vulnerability for WordPress users, we wanted to get an update out immediately. 2.6.3 is available for download right now. If [...]

0

st_newsletter SQL Injection

Posted by Philipp
November 1, 2008

The st_newsletter Plugin is once again vulnerable to SQL Injection.

The hole is located within the page stnl_iframe.php, the parameter newsletter is missing correct sanitisation and so the plugin is prone to this attack. Currently we’re not aware about any fixes, users should disable the Plugin in the meantime, or should fix the problem their self. [...]

0

Wordpress-MU Cross Site Scripting Vulnerability

Posted by Philipp
October 2, 2008

Product: Wordpress-MU (multi-user)
Version: Versions prior to 2.6 are affected
Credits: Juan Galiana

Juan Galiana has published the advisory to Bugtraq this week which includes a proof of concept exploit.

Wordpress-MU is affected by a Cross Site Scripting vulnerability, an attacker can perform an XSS attack that allows him to access the
targeted user cookies to gain administrator privileges

In [...]

5

WP Spreadsheet(wpSS) SQL Injection

Posted by Philipp
April 24, 2008

A vulnerability has been found in Spreadsheet(wpSS) WordPress plugin.

The SQL Injection vulnerability may allow an attacker to compromise your backend database and potentially your blog and web server.

A public exploit has been released on milw0rm by 1ten0.0net1.

The ’ss_id’ parameter inside ss_load.php is not correctly escaped before being passed to the database.

It was reported that all [...]

Next Page