Exploits / Vulnerability Discovered : 2018-03-15 |
Type : webapps |
Platform : php
This exploit / vulnerability Wordpress plugin duplicator 1.2.32 crosssite scripting is for educational purposes only and if it is used you will do on your own risk!
Description
===========
Duplicator is a wordpress plugin with more than 1 million of active installations. Version 1.2.32 (and possibly previous versionss) are affected by a Reflected XSS vulnerability.
Vulnerable part of code
=======================
File: duplicator/installer/build/view.step4.php:254 allows direct injection of $_POST variable 'json'.
Impact
======
Arbitrary JavaScript code can be run on browser side if a user is tricked to click over a link or browse a URL under the attacker control.
Proof of Concept
============
In order to exploit this vulnerability, an attacker has to send the following request to the server: