Business

News

 
More...

Alerts

 
More...

Events

 
More...
 
     
 

Multiple Vulnerabilities in WordPress Plugins

 

Systems Affected


WordPress Polldaddy Polls & Ratings Plugin prior to 2.0.25
WordPress MailPoet Newsletters Plugin prior to 2.6.6
WordPress Simple Share Buttons Adder plugin prior to 4.5
WordPress Responsive Preview plugin prior to 1.2
WordPress Polylang Plugin prior to 1.5.2

Threat Level


Medium


Overview


Multiple vulnerabilities have been reported in various plugins for WordPress which could be exploited by a remote attacker to conduct cross-site scripting attacks, bypass certain security restrictions, HTML-injection and cross site request forgery attacks.


Description


1. WordPress Polldaddy Polls & Ratings Plugin Cross-Site Scripting Vulnerability
A Cross site Scripting vulnerability exists in Polldaddy Polls & Ratings plugin for wordpress due to improper validation of user-supplied input. A remote attacker could exploit this vulnerability by convincing the user to visit a malicious website and thereby sending malformed HTTP requests to perform arbitrary HTML and script code execution. Successful exploitation of this vulnerability could allow an attacker to perform cross-site scripting attacks, Web cache poisoning and other malicious activities.

2. WordPress MailPoet Newsletters Plugin Security Bypass Vulnerability
A Security Bypass vulnerability exists in MailPoet Newsletters Plugin for WordPress due to improper access restrictions to certain administrative functionality. A remote attacker could exploit this vulnerability to bypass certain security mechanisms and execute arbitrary PHP code.

3. WordPress Simple Share Buttons Adder Plugin Multiple cross-site request forgery (CSRF) and cross site scripting vulnerabilities ( CVE-2014-4717 )
Multiple Cross-site request forgery (CSRF) vulnerabilities exist in Simple Share Buttons Adder plugin for WordPress due to improper handling of ssba_share_text parameter in a save action to wp-admin/options-general.php. A remote attacker could exploit these vulnerabilities by convincing an admin to visit a malicious link which could allow an attacker to execute arbitrary code in context of Homepage, Pages, Posts, Category/Archive pages and post Excerpts.

4. WordPress Responsive Preview Plugin Cross Site Scripting Vulnerability (CVE-2014-4594 )
A Cross-site scripting (XSS) vulnerability exists in index.php in the WordPress Responsive Preview plugin before 1.2 due to improper sanitization of user supplied input. A remote attacker could exploit this vulnerability to execute arbitrary script code or HTML via the url parameter. This could allow an attacker to steal cookie-based authentication credentials and to conduct other attacks.

5. WordPress Polylang Plugin User Description Script Insertion Vulnerability
This vulnerability exists in Polylang plugin for WordPress due to improper sanitization of certain input related to user description . A remote attacker could exploit this vulnerability by enticing the user to visit a malicious site which could allow an attacker to conduct script insertion attacks.


Impact



Solution/ Workarounds


Upgrade to the latest version as mentioned in below links

http://wordpress.org/plugins/polylang/changelog/
https://wordpress.org/plugins/polldaddy/changelog/
https://wordpress.org/plugins/wysija-newsletters/changelog/
https://wordpress.org/plugins/simple-share-buttons-adder/changelog/
https://wordpress.org/plugins/wp-responsive-preview/changelog/


References


http://www.cert-in.org.in/


Disclaimer


The information provided herein is on "as is" basis, without warranty of any kind.


 
     

© Copyright Sri Lanka CERT|CC. All Rights Reserved.