WordPress Plugin Schreikasten 0.14.13 - Cross-Site Scripting
| EKU-ID: 24906 | CVE: OSVDB-83152 | OSVDB-ID: |
| Author: Henry Hoggard | Published: 2012-06-20 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 24906 | CVE: OSVDB-83152 | OSVDB-ID: |
| Author: Henry Hoggard | Published: 2012-06-20 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
# Title: WordPress Schreikasten 0.14.13 XSS
# Date: 5/6/12
# Author: Henry Hoggard
# Author URL: henryhoggard.co.uk
# Author Twitter: @henryhoggard
# http://wordpress.org/extend/plugins/schreikasten/
Post your XSS in either the name or content fields and the XSS will appear on the homepage.
Post your XSS as the poll title.
The XSS I used is
<script>alert('xss')</script>
#############################################################