CVE-2018-16363
published 2018-09-07CVE-2018-16363: The mndpsingh287 File Manager plugin V2.9 for WordPress has XSS via the lang parameter in a wp-admin/admin.php?page=wp_file_manager request because…
PriorityP431medium5.4CVSS 3.0
AVNACLPRLUIRSCCLILAN
EXPLOIT
EPSS
1.38%
68.8th percentile
The mndpsingh287 File Manager plugin V2.9 for WordPress has XSS via the lang parameter in a wp-admin/admin.php?page=wp_file_manager request because set_transient is used in file_folder_manager.php and there is an echo of lang in lib\wpfilemanager.php.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| filemanagerpro | file_manager | — | — |
CVSS provenance
nvdv3.05.4MEDIUMCVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
nvdv2.03.5LOWAV:N/AC:M/Au:S/C:N/I:P/A:N
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Nuclei
WordPress File Manager < 3.0 - Cross-Site Scripting
nuclei·CVSS 5.4
CVE-2018-16363 [MEDIUM] WordPress File Manager < 3.0 - Cross-Site Scripting
WordPress File Manager alert(document.domain)", "var fmlang", "wp-file-manager")'
- 'contains(content_type, "text/html")'
- 'status_code == 200'
condition: and
# digest: 4a0a00473045022100c54762c0d9ce4414e3a31675a9add037e15e19046e7c02c81fbabbdc276287a102204e13d900170982a88337ffc1745c09601e57fd94e87fdab7b49fb176010869f7:922c64590222798bb761d5b6d8e72950
No writeups or analysis indexed.
http://blog.51cto.com/010bjsoft/2171087https://plugins.trac.wordpress.org/changeset/1936043https://wordpress.org/support/topic/security-concern-6/#post-10655739https://wpvulndb.com/vulnerabilities/9126http://blog.51cto.com/010bjsoft/2171087https://plugins.trac.wordpress.org/changeset/1936043https://wordpress.org/support/topic/security-concern-6/#post-10655739https://wpvulndb.com/vulnerabilities/9126
2018-09-07
Published