Ultimate Product Catalogue <= 3.1.4 - Multiple Vulnerabilities



Description
Product Name and Description and File Upload formulary of plugin Ultimate Product Catalog lacks of proper CSRF protection and proper filtering. Allowing an attacker to alter a product presented to a customer or the wordpress administrators and insert XSS in his product name and description. It also allows an attacker to upload a php script though a CSRF due to a lack of file type filtering when uploading it.

Affects Plugin

fixed in version 3.1.5

References

EXPLOITDB 36907
PACKETSTORM 131755
URL https://wordpress.org/plugins/ultimate-product-catalogue/changelog/

Classification

Type MULTI

Miscellaneous

Submitter Felipe Molina de la Torre
Submitter Twitter felmoltor
Views 1306
Verified No
WPVDB ID 7961

Timeline

Publicly Published 2015-05-04 (over 3 years ago)
Added 2015-05-05 (over 3 years ago)
Last Updated 2015-05-15 (over 3 years ago)

Copyright & License

Copyright All data and resources contained within this page and this web site is Copyright © The WPScan Team.
License Some of this data may be used for non-commercial purposes, however, any potential commercial usage of this data will require a license. If you would like to inquire about a commercial license please contact us.