SNS Vulnerability

Wordpress Multiple Third Party Plugins Multiple Vulnerabilities

Description

(#Several vulnerabilities have been identified in third party plugins for WordPress:#- Users Ultra: arbitrary file upload#- WooCommerce: post authentication cross-site scripting#- Post highlights : stored cross-site scripting (CVE-2014-8087).##Proofs of concept are available.)

Vulnerable Products

Vulnerable Software:
WordPress (WordPress) -

Solution

- Post highlights: 2.6.1.

CVE

CVE-2014-8087

References

- BugTraq : WordPress Users Ultra Plugin [Unrestricted File Upload]
http://seclists.org/bugtraq/2015/Nov/93
- ForgiGuard : Fortinet Discovers Another WordPress WooCommerce Plug-in Cross-Site Scripting Vulnerability
http://www.fortiguard.com/advisory/fortinet-discovers-another-wordpress-woocommerce-plug-in-cross-site-scripting-vulnerability
- g0blin : post highlights 2.0 - 2.6, Persistent XSS
https://research.g0blin.co.uk/cve-2014-8087/

Vulnerability Manager Detection

IPS Protection

ASQ Engine alarm	Available Since
XSS - Prevention - POST : suspicious 'meta' tag found in data	3.2.0
XSS - Prevention - POST : suspicious 'img' attribute found in data	3.2.0
XSS - Prevention - POST : suspicious 'style' tag found in data	5.0.0
XSS - Prevention - POST : javascript code found in data	5.0.0
XSS - Prevention - POST : suspicious tag with event found in data	5.0.0
XSS - Prevention - POST : suspicious 'embed' tag found in data	5.0.0
XSS - Prevention - POST : 'location' javascript object found in data	5.0.0
XSS - Prevention - POST : code allowing cookie access found in data	5.0.0
XSS - Prevention - POST : 'script' tag found in data	5.0.0
XSS - Prevention - POST : suspicious 'style' attribute found in data	5.0.0
XSS - Prevention - POST : suspicious 'applet' tag found in data	5.0.0
XSS - Prevention - POST : suspicious 'div' tag found in data	5.0.0
XSS - Prevention - POST : suspicious 'img' attribute found in data	5.0.0
XSS - Prevention - POST : suspicious 'meta' tag found in data	5.0.0
XSS - Prevention - POST : suspicious 'object' tag found in data	5.0.0
XSS - Prevention - POST : suspicious 'iframe' tag found in data	5.0.0

Risk level

Low

Vulnerability First Public Report Date

2015-11-17

Target Type

Server

Possible exploit

Remote