WordPress Unfiltered_HTML Field Name HTML Injection Vulnerability
BID:25639
Info
WordPress Unfiltered_HTML Field Name HTML Injection Vulnerability
| Bugtraq ID: | 25639 |
| Class: | Input Validation Error |
| CVE: |
CVE-2007-4893 |
| Remote: | Yes |
| Local: | No |
| Published: | Sep 11 2007 12:00AM |
| Updated: | May 07 2015 05:35PM |
| Credit: | xknown is credited with the discovery of this vulnerability. |
| Vulnerable: |
WordPress Wordpress (B2) 0.6.2 .1 WordPress Wordpress (B2) 0.6.2 WordPress WordPress 2.2.2 WordPress WordPress 2.2.1 WordPress WordPress 2.1.3 WordPress WordPress 2.1.2 WordPress WordPress 2.1.1 WordPress WordPress 2.0.10 WordPress WordPress 2.0.7 WordPress WordPress 2.0.6 WordPress WordPress 2.0.5 WordPress WordPress 2.0.4 WordPress WordPress 2.0.3 WordPress WordPress 2.0.2 WordPress WordPress 2.0.1 WordPress WordPress 2.0 WordPress WordPress 1.5.2 WordPress WordPress 1.5.1 .3 WordPress WordPress 1.5.1 .2 WordPress WordPress 1.5.1 WordPress WordPress 1.5 WordPress WordPress 1.2.2 WordPress WordPress 1.2.1 WordPress WordPress 1.2 WordPress WordPress 0.71 WordPress WordPress 0.7 WordPress WordPress 2.2 Revision 5003 WordPress WordPress 2.2 Revision 5002 WordPress WordPress 2.2 WordPress WordPress 2.1.3-RC2 WordPress WordPress 2.1.3-RC1 WordPress WordPress 2.1 WordPress WordPress 2.0.10-RC2 WordPress WordPress 2.0.10-RC1 Redhat Fedora Core7 |
| Not Vulnerable: |
WordPress WordPress 2.2.3 |
Discussion
WordPress Unfiltered_HTML Field Name HTML Injection Vulnerability
WordPress is prone to an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input data.
Exploiting this issue may allow an attacker to execute HTML and script code in the context of the affected site, to steal cookie-based authentication credentials, or to control how the site is rendered to the user; other attacks are also possible.
Versions prior to WordPress 2.2.3 are vulnerable.
WordPress is prone to an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input data.
Exploiting this issue may allow an attacker to execute HTML and script code in the context of the affected site, to steal cookie-based authentication credentials, or to control how the site is rendered to the user; other attacks are also possible.
Versions prior to WordPress 2.2.3 are vulnerable.
Exploit / POC
WordPress Unfiltered_HTML Field Name HTML Injection Vulnerability
Attackers can exploit this issue via a browser.
Attackers can exploit this issue via a browser.
Solution / Fix
WordPress Unfiltered_HTML Field Name HTML Injection Vulnerability
Solution:
The vendor released WordPress 2.2.3 to address this issue. Please see the references for more information.
WordPress WordPress 2.1
WordPress WordPress 2.2
WordPress WordPress 2.1.3-RC1
WordPress WordPress 2.0.10-RC1
WordPress WordPress 2.2 Revision 5003
WordPress WordPress 2.0.10-RC2
WordPress WordPress 2.2 Revision 5002
WordPress WordPress 2.1.3-RC2
WordPress WordPress 0.7
WordPress WordPress 0.71
WordPress WordPress 1.2
WordPress WordPress 1.2.1
WordPress WordPress 1.2.2
WordPress WordPress 1.5
WordPress WordPress 1.5.1 .3
WordPress WordPress 1.5.1
WordPress WordPress 1.5.1 .2
WordPress WordPress 1.5.2
WordPress WordPress 2.0
WordPress WordPress 2.0.1
WordPress WordPress 2.0.10
WordPress WordPress 2.0.2
WordPress WordPress 2.0.3
WordPress WordPress 2.0.4
WordPress WordPress 2.0.5
WordPress WordPress 2.0.6
WordPress WordPress 2.0.7
WordPress WordPress 2.1.1
WordPress WordPress 2.1.2
WordPress WordPress 2.1.3
WordPress WordPress 2.2.1
WordPress WordPress 2.2.2
Solution:
The vendor released WordPress 2.2.3 to address this issue. Please see the references for more information.
WordPress WordPress 2.1
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.2
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.1.3-RC1
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.0.10-RC1
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.2 Revision 5003
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.0.10-RC2
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.2 Revision 5002
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.1.3-RC2
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 0.7
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 0.71
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 1.2
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 1.2.1
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 1.2.2
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 1.5
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 1.5.1 .3
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 1.5.1
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 1.5.1 .2
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 1.5.2
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.0
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.0.1
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.0.10
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.0.2
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.0.3
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.0.4
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.0.5
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.0.6
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.0.7
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.1.1
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.1.2
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.1.3
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.2.1
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
WordPress WordPress 2.2.2
-
WordPress WordPress Latest Release Download
http://wordpress.org/latest.tar.gz
References
WordPress Unfiltered_HTML Field Name HTML Injection Vulnerability
References:
References:
- phpWordPress Web Site (phpWordPress)
- Users without unfiltered_html capability can post arbitrary html (WordPress)