Users Ultra Membership Plugin <= 1.5.62 - Authenticated Stored Cross-Site Scripting (XSS) & CSRF



Description
Both p_name and p_desc are vulnerable. No nonce on form so also vulnerable to CSRF. Original researcher's PoC does not work as all parameters are needed to be submitted not just the p_name parameter.

Affects Plugin

References

CVE 2015-9394
CVE 2015-9393
CVE 2015-9392
URL https://seclists.org/bugtraq/2015/Dec/13

Classification

Type MULTI

Miscellaneous

Submitter ethicalhack3r
Submitter Website https://dewhurstsecurity.com/
Submitter Twitter ethicalhack3r
Views 7891
Verified Yes
WPVDB ID 8350

Timeline

Publicly Published 2015-12-02 (over 4 years ago)
Added 2015-12-09 (over 4 years ago)
Last Updated 2019-11-28 (8 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin