Tuesday, February 05, 2008 11:35 AM
cmosby
WordPress WP-Footnotes Plugin "admin_panel.php" Cross-Site Scripting - Advisories - Secunia
WordPress WP-Footnotes Plugin "admin_panel.php" Cross-Site Scripting
Secunia Advisory:
SA28772
Release Date:
2008-02-04
Critical:
Less critical
Impact:
Cross Site Scripting
Where:
From remote
Solution Status:
Unpatched
Software:
WP-Footnotes 2.x (plugin for WordPress)
Description:
NBBN has discovered some vulnerabilities in the WP-Footnotes plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
Input passed to the "pre_footnotes", "priority", "post_footnotes", and "style_rules" array elements in the "wp_footnotes_current_settings[]" array in the admin_panel.php script is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.
Successful exploitation requires that "register_globals" is enabled.
The vulnerabilities are confirmed in version 2.2. Other versions may also be affected.
Solution:
Edit the source code to ensure that input is properly sanitised.
Provided and/or discovered by:
NBBN
Source: WordPress WP-Footnotes Plugin "admin_panel.php" Cross-Site Scripting - Advisories - Secunia
Filed under: Blogging, Security