.. / CVE-2011-5265

Exploit for Featurific For WordPress 1.6.2 - Cross-Site Scripting (CVE-2011-5265)

Description:

A cross-site scripting vulnerability in cached_image.php in the Featurific For WordPress plugin 1.6.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the snum parameter.

Nuclei Template

View the template here CVE-2011-5265.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2011/CVE-2011-5265.yaml

References:

https://exchange.xforce.ibmcloud.com/vulnerabilities/71468
https://github.com/d4n-sec/d4n-sec.github.io
https://github.com/ARPSyndicate/kenzer-templates
https://nvd.nist.gov/vuln/detail/CVE-2011-5265

.. / CVE-2011-5265 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for Featurific For WordPress 1.6.2 - Cross-Site Scripting (CVE-2011-5265)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2011-5265