Plupload cross-site scripting vulnerability

Description

Plupload allows you to upload files using HTML5 Gears, Silverlight, Flash, BrowserPlus or normal forms, providing some unique features such as upload progress, image resizing and chunked uploads. This version of Plupload is vulnerable to cross-site scripting. The affected file is plupload.flash.swf.

The vulnerable file is included in WordPress versions 3.5, 3.4.2, 3.4.1, 3.4, 3.3.3 and 3.3.2.

Proof of Concept:

wp-includes/js/plupload/plupload.flash.swf?id=\"));}catch(e){alert(1);}//

Remediation

Upgrade to the latest version of Plupload.

References