CVE-2015-4127
published 2015-05-28CVE-2015-4127: Cross-site scripting (XSS) vulnerability in the church_admin plugin before 0.810 for WordPress allows remote attackers to inject arbitrary web script or HTML…
PriorityP426medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
7.50%
93.7th percentile
Cross-site scripting (XSS) vulnerability in the church_admin plugin before 0.810 for WordPress allows remote attackers to inject arbitrary web script or HTML via the address parameter, as demonstrated by a request to index.php/2015/05/21/church_admin-registration-form/.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| church_admin_project | church_admin | <= 0.800 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
WordPress Plugin church_admin 0.800 - Persistent Cross-Site Scripting
exploitdb·2015-05-26
CVE-2015-4127 WordPress Plugin church_admin 0.800 - Persistent Cross-Site Scripting
WordPress Plugin church_admin 0.800 - Persistent Cross-Site Scripting
---
# Exploit Title: Wordpress church_admin Stored XSS
# Date: 21-04-2015
# Exploit Author: woodspeed
# Vendor Homepage: https://wordpress.org/plugins/church-admin/
# Version: 0.800
# OSVDB ID : http://www.osvdb.org/show/osvdb/121304
# WPVULNDB ID : https://wpvulndb.com/vulnerabilities/7999
# Category: webapps
1. Description
On the registration form the address field is not validated before returning it to the user.
Visiting the Directory page, will show the confirm window.
2. Proof of Concept
POST /wordpress/index.php/2015/05/21/church_admin-registration-form/
save=yes&church_admin_register=9d18cf0420&_wp_http_referer=%2Fwordpress%2Findex.php%2F2015%2F05%2F21%2Fchurch_admin-registration-form%2F&first_name%5B%5D=
Nuclei
WordPress Church Admin <0.810 - Cross-Site Scripting
nuclei·CVSS 4.3
CVE-2015-4127 [MEDIUM] WordPress Church Admin <0.810 - Cross-Site Scripting
WordPress Church Admin alert(document.domain)"
- type: word
part: header
words:
- text/html
- type: status
status:
- 200
# digest: 4b0a00483046022100f7230b56bcce56b3848059a109876f6c6224c4b9124d5758446872860775393e022100f0f22be90526204ea2086a8103177d4a0ecfc2f203fc36e865ee48e5ab43aa5e:922c64590222798bb761d5b6d8e72950
No writeups or analysis indexed.
http://packetstormsecurity.com/files/132034/WordPress-Church-Admin-0.800-Cross-Site-Scripting.htmlhttp://www.osvdb.org/121304http://www.securityfocus.com/bid/74782https://wordpress.org/plugins/church-admin/changelog/https://www.exploit-db.com/exploits/37112/http://packetstormsecurity.com/files/132034/WordPress-Church-Admin-0.800-Cross-Site-Scripting.htmlhttp://www.osvdb.org/121304http://www.securityfocus.com/bid/74782https://wordpress.org/plugins/church-admin/changelog/https://www.exploit-db.com/exploits/37112/
2015-05-28
Published