WordPress Login With Ajax Plugin Cross Site Scripting Vulnerability

Bugtraq ID:	53423
Class:	Input Validation Error
CVE:	CVE-2012-2759 CVE-2012-4283
Remote:	Yes
Local:	No
Published:	May 08 2012 12:00AM
Updated:	Aug 16 2012 09:50PM
Credit:	Stewart McIntyre of Dell SecureWorks.
Vulnerable:	WordPress Login With Ajax Plugin 3.0.4
Not Vulnerable:	WordPress Login With Ajax Plugin 3.0.4.1

WordPress Login With Ajax Plugin Cross Site Scripting Vulnerability

The Login With Ajax plugin for WordPress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input.

An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials and launch other attacks.

Login With Ajax versions prior to 3.0.4.1 are vulnerable.

WordPress Login With Ajax Plugin Cross Site Scripting Vulnerability

Attackers can exploit this issue by enticing an unsuspecting victim to follow a malicious URI.

WordPress Login With Ajax Plugin Cross Site Scripting Vulnerability

Solution:
Updates are available. Please see the references for more information.

WordPress Login With Ajax Plugin Cross Site Scripting Vulnerability

References:

• Login With Ajax Plugin Changelog (WordPress)
  
• Patch: Changeset 541069 (WordPress)
  
• WordPress Homepage (WordPress)