Comments on: XSS – Nextgen gallery 0.96 wordpress plugin http://webappsecurity.wordpress.com/2008/06/08/xss-nextgen-gallery-096-wordpress-plugin/ Mon, 10 Nov 2008 21:36:24 +0000 http://wordpress.com/ hourly 1 By: Moriah http://webappsecurity.wordpress.com/2008/06/08/xss-nextgen-gallery-096-wordpress-plugin/#comment-28 Moriah Mon, 10 Nov 2008 21:36:24 +0000 http://webappsecurity.wordpress.com/?p=6#comment-28 Thanks for writing this. Thanks for writing this.

]]> By: eti http://webappsecurity.wordpress.com/2008/06/08/xss-nextgen-gallery-096-wordpress-plugin/#comment-15 eti Tue, 10 Jun 2008 09:18:51 +0000 http://webappsecurity.wordpress.com/?p=6#comment-15 This is still bad if you allow users to add/edit images in the gallery. This is still bad if you allow users to add/edit images in the gallery.

]]> By: Sp0oKeR http://webappsecurity.wordpress.com/2008/06/08/xss-nextgen-gallery-096-wordpress-plugin/#comment-14 Sp0oKeR Sun, 08 Jun 2008 16:08:34 +0000 http://webappsecurity.wordpress.com/?p=6#comment-14 This flaw we could use CSRF and send some malicious URL to the wordpress admin and hijacking the cookie session. Not an easy stuff but it's possible . Good job eth0 =) Regards This flaw we could use CSRF and send some malicious URL to the wordpress admin and hijacking the cookie session. Not an easy stuff but it’s possible .

Good job eth0 =)

Regards

]]> By: Alex Rabe http://webappsecurity.wordpress.com/2008/06/08/xss-nextgen-gallery-096-wordpress-plugin/#comment-13 Alex Rabe Sun, 08 Jun 2008 14:37:23 +0000 http://webappsecurity.wordpress.com/?p=6#comment-13 Ok,thanks to point this out. I will consider a update in the next release Ok,thanks to point this out. I will consider a update in the next release

]]> By: webappsecurity http://webappsecurity.wordpress.com/2008/06/08/xss-nextgen-gallery-096-wordpress-plugin/#comment-12 webappsecurity Sun, 08 Jun 2008 14:16:29 +0000 http://webappsecurity.wordpress.com/?p=6#comment-12 A possibility to execute scripts is not a best pratice to code, this error have a lowest impact, because this only can be reproduced by a site adminsitrator. If your intention is html code, use an escape to not allow script execution in IMHO. A possibility to execute scripts is not a best pratice to code, this error have a lowest impact, because this only can be reproduced by a site adminsitrator. If your intention is html code, use an escape to not allow script execution in IMHO.

]]> By: Alex Rabe http://webappsecurity.wordpress.com/2008/06/08/xss-nextgen-gallery-096-wordpress-plugin/#comment-11 Alex Rabe Sun, 08 Jun 2008 14:06:11 +0000 http://webappsecurity.wordpress.com/?p=6#comment-11 Ok, you can insert the same code into a post/page. Is this also a XSS ? It was my intention to allow in description field html code, I don't see any issue as long no evil person have access to your blog, or I'm wrong ? Ok, you can insert the same code into a post/page. Is this also a XSS ? It was my intention to allow in description field html code, I don’t see any issue as long no evil person have access to your blog, or I’m wrong ?

]]> By: webappsecurity http://webappsecurity.wordpress.com/2008/06/08/xss-nextgen-gallery-096-wordpress-plugin/#comment-10 webappsecurity Sun, 08 Jun 2008 13:02:17 +0000 http://webappsecurity.wordpress.com/?p=6#comment-10 This code is inserte in inserted in admin page, to "explore" it is necessary a admin privilege! This code is inserte in inserted in admin page, to “explore” it is necessary a admin privilege!

]]> By: Alex Rabe http://webappsecurity.wordpress.com/2008/06/08/xss-nextgen-gallery-096-wordpress-plugin/#comment-9 Alex Rabe Sun, 08 Jun 2008 07:16:10 +0000 http://webappsecurity.wordpress.com/?p=6#comment-9 Are you able to access to the page without admin access ? I'm not able to enter this code , when I have no access to the admin section Are you able to access to the page without admin access ? I’m not able to enter this code , when I have no access to the admin section

]]>