Description

WordPress Plugin Count per Day is prone to an arbitrary file download and a cross-site scripting vulnerability because it fails to sufficiently verify and sanitize user-supplied data. Attackers may leverage these issues to download arbitrary files in the context of the webserver process and execute arbitrary HTML and script code in the browser of an unsuspecting user in the context of the affected site. This may let the attacker steal cookie-based authentication credentials and launch other attacks. WordPress Plugin Count per Day versions prior to 3.1.1 are vulnerable.

Remediation

Update to plugin version 3.1.1 or latest

References

http://www.securityfocus.com/bid/51402/exploit

http://www.exploit-db.com/exploits/18355/

http://packetstormsecurity.com/files/108631/countperday-downloadxss.txt

Related Vulnerabilities

PHP Other Vulnerability (CVE-2016-4540)

MySQL Other Vulnerability (CVE-2005-0799)

WordPress Plugin Quiz And Survey Master-Best Quiz, Exam and Survey for WordPress Multiple Vulnerabilities (7.3.10)

WordPress Plugin WooCommerce Cross-Site Scripting (2.6.3)

WordPress Plugin Advanced Forms for ACF Security Bypass (1.6.8)

Severity

High

Classification

CVE-2012-0896 CWE-22 CWE-79 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Missing Update Information Disclosure XSS