PhotoSmash Galleries WordPress Plugin 'action' Parameter XSS Vulnerability Network Vulnerability

Summary

This host is running WordPress PhotoSmash Galleries Plugin and is prone to cross site scripting vulnerability.

Impact

Successful exploitation will allow attacker to execute arbitrary code in the context of an application. Impact Level: Application

Solution

Upgrade to WordPress PhotoSmash Galleries Plugin version 1.0.5 or later, For updates refer to http://wordpress.org/extend/plugins/photosmash-galleries/

Insight

The flaw is caused by improper validation of user-supplied input passed via the 'action' parameter to /wp-content/plugins/photosmash-galleries/index.php, that allows attackers to execute arbitrary HTML and script code on the web server.

Affected

WordPress PhotoSmash Galleries Plugin version 1.0.1

References

http://osvdb.org/show/osvdb/71860
http://www.htbridge.ch/advisory/xss_in_photosmash_wordpress_plugin.html

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Apache Struts2/XWork Remote Command Execution Vulnerability
Apache Tomcat Multiple Vulnerabilities June-09
APC PowerChute Network Shutdown 'security/applet' Cross Site Scripting Vulnerability
/cgi-bin directory browsable ?
Apache mod_proxy_ajp Information Disclosure Vulnerability

Take action and discover your vulnerabilities