iEntry 10th Anniversary RSS Archive

IT Management Begins With Security
SecurityProNews > Insider Reports > Insider > WordPress Open To Script Injection
Search:
[ insider_reports_insider ]

WordPress Open To Script Injection



David Utter
Staff Writer
2007-03-02

SecurityProNews: Insider Reports Insider Reports RSS Feed


Multiple vulnerabilities in the WordPress blogging platform have been found, leaving it open to potential HTML or JavaScript injection by remote attackers.

WordPress Open To Script Injection
WordPress Open To Script Injection

A number of notable blogs run on WordPress, including Robert Scoble's long-running Scobleizer site. That and others could be at risk from a number of vulnerabilities reported by SecuriTeam.

Their account of Stefan Friedli's findings at scip AG lists several issues with WordPress. The problems come from a lack of input validation when deleting posts from a WordPress blog:

Further to this vulnerability which was limited on manipulating the "post"-parameter, there are several other vulnerabilities which are very similar to the one mentioned above. Every operation that makes use of the common confirm-dialog is vulnerable for this type of attack.
The vulnerabilities can be exploited when deleting posts, comments, pages, and categories. SecuriTeam said this list may not be exhaustive regarding the flaws.

There could be greater impact from these problems than initially believed. SecuriTeam said that a workaround recommended, fixing the validation of the Post parameter, won't fix the problem and does not reduce the threat of cross-site scripting or other potential web-based exploits.

Until WordPress provides a fix, SecuriTeam suggested the use of an application-level filter like Apache's mod_security could work as a temporary workaround.

Examples of how the WordPress vulnerabilities could be exploited made the rounds on Bugtraq on February 26th. It was disclosed as a zero-day issue.

WordPress itself seems to be having some issues. A note posted today at their support site said support is extremely busy. The WordPress.org domain had been down, and its support forums are still unavailable.

UPDATE: WordPress is urging its users to upgrade to 2.1.2 from 2.1.1 as soon as possible.

UPDATE 2: WordPress creator Matt Mullenweg provided some clarification via email of the issues at WordPress.com and WordPress.org - "WordPress.com and WordPress.org are different, we close the support on WordPress.com every weekend. WordPress.org was down because of the compromise we talked about in the blog post."

---

AddThis Social Bookmark Button   AddThis Feed Button


Tag:


About the Author:
David Utter is a business and technology writer for SecurityProNews and WebProNews.

More insider_reports_insider Articles

SecurityProNews: Insider Reports Insider Reports RSS Feed

Get Your Site Submitted for Free in the World's Largest B2B Directory!

Email Address:
* URL:
*
*Indicates Mandatory Field

Terms & Conditions

iEntry Featured Services: Jayde Member Services | Forums | Freeware | Advertise with Us

Contact Us | Advertise | Newsletter Archive | Sitemap | Submit an Article | News Feeds
SecurityProNews is an iEntry, Inc.® publication - 1998-2009 All Rights Reserved | Privacy Policy and Legal		 Join the WebProWorld Forums: Click Here
Virus Warnings

Subscribe to
SecurityProNews FREE!


[ more newsletters ]

Featured On:
article resources
Search Articles:
[advanced search]

WebProWorld.com
Get in-touch with industry experts and leaders
Post your site for review by expert and peers
Ask Security, IT, Development and Design questions

Free Membership: Join Now!

Visit WebProWorld.com

Titan Quest Forum
The #1 Titan Quest forum
Halo 3 Forum
The best Halo, Halo 2, Halo 3 forum
Nintendo Wii
Nintendo Wii news and views
Mac Software
The best in OS X freeware
Graphics Forum
Your source for graphic tutorials
SecurityProNews.com | Breaking eBusiness News Get Your IT Questions Answered - Click Here SecurityProNews News Feeds