wordpress plugin

Ultimate Form Builder Cross-Site Scripting (XSS) Vulnerability

 

Seputar Ultimate Form Builder

Kalau kita lihat di web resminya, plugin Ultimate Form Builder memudahkan kita untuk membuat bermacam-macam kolom contact dengan cara drag and drop, dan plugin wordpress ini sangat mudah untuk digunakan karna user tidak perlu menguasai bahasa pemrograman untuk bisa membuat tampilan halaman web lebih cantik.

Descripsi celah Ultimate Form Builder

ThunderScan adalah organisasi yang bergerak di bidang security tester, dan mereka lah yang menemukan celah ini dengan dengan teknik CSS (Cross Site Scripting).

Berikut ulasannya

ThunderScan discovered Cross Site Scripting vulnerability in Ultimate Form Builder plugin. The easiest way to reproduce the vulnerability is to visit the provided URL while being logged in as administrator or another user that is authorized to access the plugin settings page. The Cross-Site Scripting vulnerability can enable the attacker to construct the URL that contains malicious JavaScript code. If the administrator of the site makes a request to such an URL, the attacker’s code will be executed, with unrestricted access to the WordPress site in question. The attacker can entice the administrator to visit the URL in various ways, including sending the URL by email, posting it as a part of the comment on the vulnerable site or another forum, or embedding it as an IMG tag source in another web page administrator will visit, causing the administrator’s browser to request the URL automatically – due to missing nonce token the vulnerability is directly exposed to Cross site request forgery, (CSRF) attacks. The JavaScript code could enable the attacker to make requests with administrator privileges, or grab the session ID and be able to interact with the administrative pages through his own browser.

Type                         :  XSS
OWASP Top 10 A3 :  Cross-Site Scripting (XSS)
CWE                          :  CWE-79

Solusi

Jika kalian menggunakan plugin wordpress ini, segera update ke versi terakhir agar terhindar dari hal-hal yang tidak di inginkan, bug ini telah di tutup oleh developer pada versi 1.3.3

Untuk melihat security update lihat disini.

 

“Keep your System up to date”

LEAVE A REPLY

Please enter your comment!
Please enter your name here