.. / CVE-2018-3810

Exploit for Oturia WordPress Smart Google Code Inserter <3.5 - Authentication Bypass (CVE-2018-3810)

Description:

Oturia Smart Google Code Inserter plugin before 3.5 for WordPress allows unauthenticated attackers to insert arbitrary JavaScript or HTML code (via the sgcgoogleanalytic parameter) that runs on all pages served by WordPress. The saveGoogleCode() function in smartgooglecode.php does not check if the current request is made by an authorized user, thus allowing any unauthenticated user to successfully update the inserted code.

Nuclei Template

View the template here CVE-2018-3810.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2018/CVE-2018-3810.yaml

References:

https://limbenjamin.com/articles/smart-google-code-inserter-auth-bypass.html
https://www.exploit-db.com/exploits/43420
https://nvd.nist.gov/vuln/detail/CVE-2018-3810
https://wpvulndb.com/vulnerabilities/8987
https://wordpress.org/plugins/smart-google-code-inserter/#developers

.. / CVE-2018-3810 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for Oturia WordPress Smart Google Code Inserter <3.5 - Authentication Bypass (CVE-2018-3810)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2018-3810