WordPress Video Gallery Plugin Multiple SQL Injection and Cross Site Scripting Vulnerabilities
BID:68883
Info
WordPress Video Gallery Plugin Multiple SQL Injection and Cross Site Scripting Vulnerabilities
| Bugtraq ID: | 68883 |
| Class: | Input Validation Error |
| CVE: |
CVE-2014-9097 CVE-2014-9098 |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 24 2014 12:00AM |
| Updated: | Dec 03 2014 12:55AM |
| Credit: | Claudio Viviani |
| Vulnerable: | |
| Not Vulnerable: | |
Discussion
WordPress Video Gallery Plugin Multiple SQL Injection and Cross Site Scripting Vulnerabilities
The Video Gallery Plugin for WordPress is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities.
Successful exploits could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
Video Gallery 2.5 is vulnerable; other versions may also be affected.
The Video Gallery Plugin for WordPress is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities.
Successful exploits could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
Video Gallery 2.5 is vulnerable; other versions may also be affected.
Exploit / POC
WordPress Video Gallery Plugin Multiple SQL Injection and Cross Site Scripting Vulnerabilities
Attackers can use a browser to exploit the SQL-injection issues. An attacker must trick a victim into following a malicious URI to exploit cross-site scripting issues.
Attackers can use a browser to exploit the SQL-injection issues. An attacker must trick a victim into following a malicious URI to exploit cross-site scripting issues.
Solution / Fix
WordPress Video Gallery Plugin Multiple SQL Injection and Cross Site Scripting Vulnerabilities
Solution:
Reportedly, the issue is fixed; however, Symantec has not confirmed this. Please contact the vendor for more information.
Solution:
Reportedly, the issue is fixed; however, Symantec has not confirmed this. Please contact the vendor for more information.
References
WordPress Video Gallery Plugin Multiple SQL Injection and Cross Site Scripting Vulnerabilities
References:
References: