WordPress

1

Multiple vulnerabilities in WP Comment Remix 1.4.3

Posted by Philipp
November 1, 2008

A number of vulnerabilities have been discovered in the WP Comment Remix 1.4.3 plugin.

The following is a short overview of the vulnerabilities discovered:

SQL Injection: caused by unsanitized variable “p” in the ajax_comments.php file.
Cross Site Scripting: This affects authenticated and unauthenticated users.
Cross Site Request Forgery: the form generated through wpcr_do_options_page lacks the WordPress wp_nonce security function.

These [...]

0

Wordpress-MU Cross Site Scripting Vulnerability

Posted by Philipp
October 2, 2008

Product: Wordpress-MU (multi-user)
Version: Versions prior to 2.6 are affected
Credits: Juan Galiana

Juan Galiana has published the advisory to Bugtraq this week which includes a proof of concept exploit.

Wordpress-MU is affected by a Cross Site Scripting vulnerability, an attacker can perform an XSS attack that allows him to access the
targeted user cookies to gain administrator privileges

In [...]

4

WordPress 2.6.1 Weak Entropy Vulnerability

Posted by DK
September 11, 2008

iso^kpsbr has discovered a vulnerability that may allow an external attacker to gain admin access to WordPress 2.6.1.

WordPress is prone to a weakness in the entropy of generated passwords. Successfully exploiting this issue may allow an attacker to guess randomly generated passwords. WordPress 2.6.1 is vulnerable; other versions may also be affected.

The original advisory and [...]

0

WordPress Pwnie Awards

Posted by DK
August 13, 2008

The Pwnie Awards, an ‘annual awards ceremony celebrating and making fun of the achievements and failures of security researchers and the wider security community’.

It seems like hardly a week goes by without a new vulnerability in WordPress or one of its many plugins. Many of them are actively being exploited to own popular WordPress [...]

12

WP Contact-Form Vulnerabilities

Posted by DK
August 13, 2008

WP Contact Form is a very popular WordPress plugin.

Mustlive has reported a number of vulnerabilities which you can view at his web page here.

According to the plugin authors page, the latest version is 3.1.8. We went ahead and downloaded a copy to have a look. The actual contact form page that your users see is [...]

Previous Page
Next Page