Copy or Move Comments, 24f8cdac9228df7523d58ed6ae2a9ef029ffe0ea

CVE, Research URL: 24f8cdac9228df7523d58ed6ae2a9ef029ffe0ea
Home page URL: Security reports for Copy or Move Comments
Application: Copy or Move Comments
Published on: Jun 16, 2015
Research Description: Copy or Move Comments [copy-or-move-comments] < 1.0.1 (closed) Copy or Move Comments < 1.0.1 - Cross-Site Scripting and SQL Injection The Copy or Move Comments plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via several parameters in versions up to, and including, 1.0.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link. The plugin is also vulnerable to time-based blind SQL Injection via the ‘source_post’ and ‘target_post’ parameters due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
Affected versions: max 1.0.1.
Status: vulnerable