Ultimate Product Catalogue <= 3.1.4 - Multiple Vulnerabilities



Description
Product Name and Description and File Upload formulary of plugin Ultimate Product Catalog lacks of proper CSRF protection and proper filtering. Allowing an attacker to alter a product presented to a customer or the wordpress administrators and insert XSS in his product name and description. It also allows an attacker to upload a php script though a CSRF due to a lack of file type filtering when uploading it.

Affects Plugin

fixed in version 3.1.5

References

EXPLOITDB 36907
PACKETSTORM 131755
URL https://wordpress.org/plugins/ultimate-product-catalogue/changelog/

Classification

Type MULTI

Miscellaneous

Submitter Felipe Molina de la Torre
Submitter Twitter felmoltor
Views 4124
Verified No
WPVDB ID 7961

Timeline

Publicly Published 2015-05-04 (over 4 years ago)
Added 2015-05-05 (over 4 years ago)
Last Updated 2015-05-15 (over 4 years ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin