Ultimate Product Catalogue <= 3.1.4 - Multiple Vulnerabilities



Description
Product Name and Description and File Upload formulary of plugin Ultimate Product Catalog lacks of proper CSRF protection and proper filtering. Allowing an attacker to alter a product presented to a customer or the wordpress administrators and insert XSS in his product name and description. It also allows an attacker to upload a php script though a CSRF due to a lack of file type filtering when uploading it.

Affects Plugin

References

ExploitDB 36907
PacketStorm 131755
URL https://wordpress.org/plugins/ultimate-product-catalogue/changelog/

Classification

Type MULTI

Miscellaneous

Submitter Felipe Molina de la Torre
Submitter Twitter felmoltor
Views 4442
Verified No
WPVDB ID 7961

Timeline

Publicly Published 2015-05-04 (about 5 years ago)
Added 2015-05-05 (about 5 years ago)
Last Updated 2019-10-21 (9 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin