WP still hasn’t fixed XSS Vulnerability in unsanitized comments?!?! | WordPress.org

dtrenz
(@dtrenz)

14 years, 2 months ago

I just upgraded (long overdue) to the latest version of WP (2.9.1) after getting hacked. I noticed that in the old version of WP, you could add javascript to a comment and it would execute!

I have just upgraded, and assumed that this would be fixed, but it hasn’t!

If you want to be terrified, give it a try yourself.

All someone needs to do is put this in a comment:

<script>document.location=”http://www.bad-website-goes-here.com”;</script>

…and anyone who visits that post will be redirected to another site that could do all sorts of bad things, like load malware, or phish for info, etc…

PLEASE PLEASE PLEASE patch this!

In the meantime, I guess I have to write a plug-in to sanitize comments? How could this have been left open for soooo long?!

Viewing 4 replies - 1 through 4 (of 4 total)

Chris_K
(@handysolo)

14 years, 2 months ago

If you feel you’ve found a security issue, please send in a notification: http://codex.wordpress.org/FAQ_Security#Where_do_I_report_security_issues.3F

Thread Starter dtrenz
(@dtrenz)

14 years, 2 months ago

Sent. Thanks.

Thread Starter dtrenz
(@dtrenz)

14 years, 2 months ago

FYI – I just installed the “HTML Purified” plug-in and it patches this vulnerability.

mrmist
(@mrmist)

14 years, 2 months ago

Not exactly.

*You* can post scripts in comments because you are a blog admin, normal commenters cannot post scripts.

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘WP still hasn’t fixed XSS Vulnerability in unsanitized comments?!?!’ is closed to new replies.

Tags

xss

In: Requests and Feedback
4 replies
3 participants
Last reply from: mrmist
Last activity: 14 years, 2 months ago
Status: not resolved

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics