WordPress Plugin Vulnerabilities

Ultimate Product Catalogue <= 3.1.4 - Multiple Vulnerabilities

Description

Product Name and Description and File Upload formulary of plugin Ultimate Product Catalog lacks of proper CSRF protection and proper filtering. Allowing an attacker to alter a product presented to a customer or the wordpress administrators and insert XSS in his product name and description. It also allows an attacker to upload a php script though a CSRF due to a lack of file type filtering when uploading it.

Affects Plugins

Plugin icon
ultimate-product-catalogue
Fixed in 3.1.5

References

Exploitdb
36907
URL
https://packetstormsecurity.com/files/#131755/

Miscellaneous

Submitter
Felipe Molina de la Torre
Submitter twitter
felmoltor
Verified
No
WPVDB ID
8703e4e7-cea0-468d-ab7b-1e0ac1321361

Timeline

Publicly Published
2015-05-04 (about 11 years ago)
Added
2015-05-05 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2019-05-22
Title
User Email Verification for WooCommerce < 3.4.0 - CSRF leading to Option Update
Published
2020-01-14
Title
Real Estate 7 < 2.9.5 - Multiple Vulnerabilities
Published
2014-09-17
Title
Easy Media Gallery < 1.3.0 - CSRF & Cross-Site Scripting (XSS)
Published
2014-08-01
Title
Ajax Category Dropdown 0.1.5 - Multiple Vulnerabilities
Published
2014-12-12
Title
WP Popup <= 1.3 - XSS & CSRF