oss-sec mailing list archives

Re: CVE-request: WordPress plugin Adminimize XSS

From: Kurt Seifried <kseifrie () redhat com>
Date: Thu, 05 Jan 2012 10:02:34 -0700

On 01/05/2012 04:06 AM, Henri Salo wrote:

Original advisory: http://www.securityfocus.com/archive/1/520591
OSVDB: http://osvdb.org/show/osvdb/77472
Fixed in: 1.7.22
Vulnerable: All before 1.7.22
SCM: http://plugins.svn.wordpress.org/adminimize/
Changelog: http://wordpress.org/extend/plugins/adminimize/changelog/

Should be 2011 CVE.

fgeek@example:~/adminimize/tags$ diff 1.7.21/adminimize_page.php 1.7.22/adminimize_page.php 
121c121
<       <form name="backend_option" method="post" id="_mw_adminimize_options" action="?page=<?php echo 
$_GET['page'];?>" >
---

      <form name="backend_option" method="post" id="_mw_adminimize_options" action="?page=<?php echo esc_attr( 
$_GET['page'] );?>" >

- Henri Salo

This is an example of a *GREAT* CVE request, he even tells me what year
it should be. Very handy for the next month or so.

Please use CVE-2011-4926 for this issue.

-- 

-- Kurt Seifried / Red Hat Security Response Team

Current thread:

CVE-request: WordPress plugin Adminimize XSS Henri Salo (Jan 05)
- Re: CVE-request: WordPress plugin Adminimize XSS Kurt Seifried (Jan 05)