You are here: Home / Exploits / Car Demon Plugin

Car Demon Plugin

February 21, 2013 By
Name: Car Demon
Type: XSS
Exploit version: 1.0.1
Release Date: 19-04-2013
Status: A new version of Car Demon has been released  •

Description:
1) Input passed via the "_msrp_value", "_rebates_value", "_discount_value", "_price_value", " _exterior_color_value", "_interior_color_value", "_mileage_value", "_stock_value", "_images_value", " _cylinders_value", "_doors_value", and "_fuel_type_value" parameters to /wp-admin/post.php (when "post_type" is set to "cars_for_sale") is not properly sanitised before being displayed to the user. This can be exploited to insert arbitrary HTML and script code, which will be executed in a user's browser session in content of an affected site when the malicious data is being viewed.

2) Input passed via the "default_service_name", "default_parts_name", and "default_finance_name" parameters to /wp-admin/edit.php (when "post_type" is set to "cars_for_sale" and "page" is set to "car_demon_plugin_options") is not properly sanitised before being displayed to the user. This can be exploited to insert arbitrary HTML and script code, which will be executed in a user's browser session in content of an affected site when the malicious data is being viewed.



Plugin Information

  1. Downloaded: 4597 Times
  2. Current Version: 1.2.4
  3. Author: Profile
  4. Tested up to: 3.4.2
  5. Download Plugin

Security Information

  1. Secunia ID: 51088
  2. Credit: Beijing Leadsec
  • Plugin statistics provided by WordPress.org. Updated within the last day or so.
  • ¹ Status info requires plugin author's to fill in versioning info on the wordpress.org repository
Filed Under: Exploits Tagged With: ,