CVE-2018-8729
published 2018-03-15CVE-2018-8729: Multiple cross-site scripting (XSS) vulnerabilities in the Activity Log plugin before 2.4.1 for WordPress allow remote attackers to inject arbitrary JavaScript…
PriorityP339medium6.1CVSS 3.0
AVNACLPRNUIRSCCLILAN
EXPLOIT
EPSS
5.63%
92.0th percentile
Multiple cross-site scripting (XSS) vulnerabilities in the Activity Log plugin before 2.4.1 for WordPress allow remote attackers to inject arbitrary JavaScript or HTML via a title that is not escaped.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| pojo | activity_log | < 2.4.1 | 2.4.1 |
CVSS provenance
nvdv3.06.1MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
WordPress Plugin Activity Log 2.4.0 - Stored Cross-Site Scripting
exploitdb·2018-04-10·CVSS 6.1
CVE-2018-8729 [MEDIUM] WordPress Plugin Activity Log 2.4.0 - Stored Cross-Site Scripting
WordPress Plugin Activity Log 2.4.0 - Stored Cross-Site Scripting
---
# Exploit Title : Activity Log Wordpress Plugin Stored Cross Site Scripting (XSS)
# Date: 25-02-2018
# Exploit Author : Stefan Broeder
# Vendor Homepage: https://pojo.me
# Software Link: https://wordpress.org/plugins/aryo-activity-log/
# Version: 2.4.0
# CVE : CVE-2018-8729
# Category : webapps
Description
Activity Log is a WordPress plugin which tracks site activity. It has more than 70.000 active installations. Version 2.4.0 (and possibly the previous ones) are affected by several Stored XSS vulnerabilities.
Vulnerable part of code
Storing the payload:
File: aryo-activity-log/hooks/class-aal-hook-attachment.php:14. The log entry that is stored contains the result of get_the_title($post->ID), which can include HTML
Exploit-DB
WordPress Plugin Activity Log 2.4.0 - Cross-Site Scripting
exploitdb·2018-04-05·CVSS 6.1
CVE-2018-8729 [MEDIUM] WordPress Plugin Activity Log 2.4.0 - Cross-Site Scripting
WordPress Plugin Activity Log 2.4.0 - Cross-Site Scripting
---
# Exploit Title : Activity Log Wordpress Plugin Stored Cross Site Scripting (XSS)
# Date: 25-02-2018
# Exploit Author : Stefan Broeder
# Contact : https://twitter.com/stefanbroeder
# Vendor Homepage: https://pojo.me
# Software Link: https://wordpress.org/plugins/aryo-activity-log/
# Version: 2.4.0
# CVE : CVE-2018-8729
# Category : webapps
Description
Activity Log is a WordPress plugin which tracks site activity. It has more than 70.000 active installations. Version 2.4.0 (and possibly the previous ones) are affected by several Stored XSS vulnerabilities.
Vulnerable part of code
Storing the payload:
File: aryo-activity-log/hooks/class-aal-hook-attachment.php:14. The log entry that is stored contains the result of get_the_ti
No writeups or analysis indexed.
https://github.com/pojome/activity-log/commit/950c46b2290c991187ff3471640e9688b16908fbhttps://github.com/pojome/activity-log/commit/e7bcd12fcb0add82bed762a971f427a360664bd9https://plugins.trac.wordpress.org/changeset/1836276https://wordpress.org/plugins/aryo-activity-log/#developershttps://www.exploit-db.com/exploits/44437/https://github.com/pojome/activity-log/commit/950c46b2290c991187ff3471640e9688b16908fbhttps://github.com/pojome/activity-log/commit/e7bcd12fcb0add82bed762a971f427a360664bd9https://plugins.trac.wordpress.org/changeset/1836276https://wordpress.org/plugins/aryo-activity-log/#developershttps://www.exploit-db.com/exploits/44437/
2018-03-15
Published