.. / CVE-2016-1000128

Exploit for WordPress anti-plagiarism <=3.60 - Cross-Site Scripting (CVE-2016-1000128)

Description:

WordPress anti-plagiarism 3.6.0 and prior are vulnerable to reflected cross-site scripting.

Nuclei Template

View the template here CVE-2016-1000128.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2016/CVE-2016-1000128.yaml
Copy

References:

http://www.vapidlabs.com/wp/wp_advisory.php?v=161
https://wordpress.org/plugins/anti-plagiarism
https://nvd.nist.gov/vuln/detail/CVE-2016-1000128