BlogSecurity » Blog Archive » Multiple vulnerabilities in WP Comment Remix 1.4.3

Multiple vulnerabilities in WP Comment Remix 1.4.3

Filed Under (Advisories, BlogWatch, WordPress) by Philipp on 1 November 2008

A number of vulnerabilities have been discovered in the WP Comment Remix 1.4.3 plugin.

The following is a short overview of the vulnerabilities discovered:

SQL Injection: caused by unsanitized variable “p” in the ajax_comments.php file.
Cross Site Scripting: This affects authenticated and unauthenticated users.
Cross Site Request Forgery: the form generated through wpcr_do_options_page lacks the WordPress wp_nonce security function.

These vulnerabilities are considered HIGH risks. The latest version (1.4.4) apparently addresses these issues.

Credit: ChX Security

More Info: The full Advisory can be found on the ChX Security Website.

Enjoy the article? Please take a second to: Digg it! | StumbleUpon it!

Comments

Thid-Party Components | Startup Security on 3 November, 2008 at 3:36 pm #

[...] of it and understand what your primary risks are as noted above. A perfect example is the recent WP Comment Remix Security Bulletin - installation of that plugin allowed for both SQL Injection and Cross-Site Scripting. Tags: [...]

Comment

Name:
Email:
Website:
Message:

Comments

Welcome to BlogSecurity

Secure WordPress

Recent Posts

Have your say!

Sponsors

Additional WP Resources

Recent Comments

Posts by Category