Archive

Archive for the ‘Blogs’ Category

WordPress Redirection Plugin “Referer” Header Script Insertion

November 1st, 2011
Comments Off

Application: WordPress
Affected Version: version 2.2.9 and prior versions.
Vendor’s URL: Redirection Plugin
Bug Type: Cross Site Scripting
Risk Level: Critical

Solution:
Update to version 2.2.10.

Blogs, Cross Site Scripting

WordPress YSlider Plugin “src” Arbitrary File Upload

November 1st, 2011
Comments Off

Application: WordPress
Affected Version: version 1.0 and prior versions.
Vendor’s URL: YSlider Plugin
Bug Type: File Upload
Risk Level: Critical

Solution:
Update to version 1.1.

Blogs, File Inclusion

WordPress SmoothGallery Plugin “src” Arbitrary File Upload

November 1st, 2011
Comments Off

Application: WordPress
Affected Version: version 1.15.1 and prior versions
Vendor’s URL: SmoothGallery Plugin
Bug Type: File Upload
Risk Level: Critical

Solution:
Update to version 1.15.2.

Blogs, File Inclusion

WordPress WP Symposium Plugin “uid” SQL Injection

August 24th, 2011
Comments Off

Application: WordPress
Affected Version: version 0.64 and prior versions.
Vendor’s URL: WP Symposium Plugin
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Update to version 11.8.18.

Blogs, SQL Injection

WordPress UnGallery Plugin “pic”, “zip”, and “movie” File Disclosure

August 24th, 2011
Comments Off

Application: WordPress
Affected Version: version 1.5.8 and prior versions.
Vendor’s URL: UnGallery Plugin
Bug Type: File Disclosure
Risk Level: Critical

Solution:
Update to version 1.5.9.

Blogs, Information Disclosure

WordPress Global Content Blocks Plugin “gcb” SQL Injection

August 24th, 2011
Comments Off

Application: WordPress
Affected Version: version 1.2 and other versions.
Vendor’s URL: Global Content Blocks Plugin
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Update to version 1.3.

Blogs, SQL Injection

WordPress Menu Creator Plugin “menu_id” SQL Injection

August 24th, 2011
Comments Off

Application: WordPress
Affected Version: version 1.1.7 and other versions.
Vendor’s URL: Menu Creator Plugin
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitised.

Blogs, SQL Injection

WordPress File Groups Plugin “fgid” SQL Injection

August 24th, 2011
Comments Off

Application: WordPress
Affected Version: version 1.1.2 and prior versions.
Vendor’s URL: File Groups Plugin
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Update to version 1.1.3.

Blogs, SQL Injection

WordPress WP DS FAQ Plugin “id” SQL Injection

August 24th, 2011
Comments Off

Application: WordPress
Affected Version: version 1.3.2
Vendor’s URL: WP DS FAQ Plugin
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitised.

Blogs, SQL Injection

WordPress Odihost Newsletter Plugin “id” SQL Injection

August 24th, 2011
Comments Off

Application: WordPress
Affected Version: version 1.0 and other versions.
Vendor’s URL: Odihost Newsletter Plugin
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitised.

Blogs, SQL Injection

WordPress All in One Adsense and YPN Plugin Security Bypass

August 24th, 2011
Comments Off

Application: WordPress
Affected Version: version 2.01 and other versions.
Vendor’s URL: All in One Adsense and YPN Plugin
Bug Type: Security Bypass
Risk Level: Critical

Solution:
Restrict access to the wp-content/plugins/all-in-one-adsense-and-ypn/all-in-one-adsense-and-ypn.php script (e.g. via .htaccess).

Access Bypass, Blogs

WordPress Link Library Plugin “id” Cross-Site Scripting and SQL Injection

August 24th, 2011
Comments Off

Application: WordPress
Affected Version: version 5.0.8 and other versions.
Vendor’s URL: Link Library Plugin
Bug Type: Cross-Site Scripting and SQL Injection
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitised.

Blogs, Cross Site Scripting, SQL Injection

WordPress UPM Polls Plugin “qid” SQL Injection

August 24th, 2011
Comments Off

Application: WordPress
Affected Version: version 1.0.3 and prior versions.
Vendor’s URL: UPM Polls Plugin
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Update to version 1.0.4.

Blogs, SQL Injection

WordPress Media Library Categories Plugin “termid” SQL Injection

August 24th, 2011
Comments Off

Application: WordPress
Affected Version: version 1.0.6 and other versions.
Vendor’s URL: Media Library Categories Plugin
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitised.

Blogs, SQL Injection

WordPress WP e-Commerce Plugin “cart_messages[]” Cross-Site Scripting

August 24th, 2011
Comments Off

Application: WordPress
Affected Version: version 3.8.6 and other versions.
Vendor’s URL: WP e-Commerce Plugin
Bug Type: Cross-Site Scripting
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitised.

Blogs, Cross Site Scripting

WordPress Plugins Compromised Source Packages Backdoor Security Issue

June 28th, 2011
Comments Off

Application: WordPress
Affected Version:
WPtouch Plugin (source files were distributed on June 21st, 2011, and possibly prior.)
W3 Total Cache Plugin (source files were distributed on June 21st, 2011 and possibly prior.)
AddThis Plugin (source files were distributed on June 21st, 2011 and possibly prior.)
Vendor’s URL:
WPtouch Plugin
W3 Total Cache Plugin
AddThis Plugin
Bug Type: System Access – Backdoor
Risk Level: Critical

Solution:
WPtouch Plugin – Update to version 1.9.29.
W3 Total Cache Plugin – Manually install version 0.9.2.3 downloaded after June 21st, 2011.
AddThis Plugin – Manually install version 2.2.0 downloaded after June 21st, 2011.

Access Bypass, Blogs

Movable Type Security Bypass and XSS

June 27th, 2009
Comments Off

Application: Movable Type
Affected Version: versions prior to 4.26.
Vendor’s URL: Movable Type
Bug Type: Security Bypass and Cross Site Scripting
Risk Level: Critical

Solution:
Update to version 4.26 or later.

Access Bypass, Blogs, Cross Site Scripting

CiBlog SQL Injection

July 17th, 2008
Comments Off

Application: CiBlog
Affected Version: version 3.1 and other versions.
Vendor’s URL: CiBlog
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitized.

Blogs, SQL Injection

myBloggie SQL Injection

July 17th, 2008
Comments Off

Application: myBloggie
Affected Version: version 2.1.6 and other versions.
Vendor’s URL: myBloggie
Bug Type: SQL Injection
Risk Level: Medium

Solution:
Edit the source code to ensure that input is properly sanitized.

Blogs, SQL Injection

Maian Weblog Multiple Cross-Site Scripting

May 21st, 2008
Comments Off

Application: Maian Weblog
Affected Version: version 4.0 and other versions.
Vendor’s URL: Maian Weblog
Bug Type: Cross Site Scripting
Risk Level: Medium

Solution:
Edit the source code to ensure that input is properly sanitized.

Blogs, Cross Site Scripting