Archive for December, 2006
Wordpress template.php Exploit
Update: 16/01 see http://michaeldaw.org/projects/wpsec/
Its been a few days since the release of:
http://michaeldaw.org/md-hacks/wordpress-persistent-xss/.
Other references:
http://www.securityfocus.com/bid/21782
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-6808
Time to release a proof of concept exploit for this. I am sure the crackers will already be exploiting this in the wild.
If you remember from my original advisory, our attack was limited due to our attack being passed through PHP’s basename function. [...]
Hacking with Images 1
pdp recently released, “Backdooring Images” where he discusses reasonably well-known but a relatively un-used technique whereby an attacker can store code in an image file.
The browser’s “trust” of imaging on the web is rather frightening and somewhat disturbing. This post discusses “hacking with images on the web”. Alot of the initial work in this post [...]
SecNews added
I have added a ‘Security News’ aka ‘SecNews’ menu to the left sidebar – for those getting sick of the RSS world. This bar has been implemented to keep track of some of the more interesting security web blogs. It is cached, so it shouldn’t affect your browsing experience.
There is space under ‘SecNews’; so if [...]
WordPress Persistent XSS
Vulnerability Title: WordPress Persistent XSS
Author: David Kierznowski
Homepage: http://michaeldaw.org
Software Vendor: WordPress Persistent XSS
Versions affected: Confirmed in v2.0.5 (latest)
WordPress is a popular open source blogging software.
A persistent XSS vulnerability has been found in WordPress (to be honest I have found a few problems and hope to publish these soon). This issue affects the latest version v2.0.5.
Discussion:
When editing [...]
2006 Review
Its been a big year for michaeldaw.org (MDO). I started off this blog in August; something I have been wanting to do on and off for ages now. It grew from 0 readers to just shy of 1000 regular readers in 4 months.
MDO’s “Backdooring PDF Files” article has been featured on Slashdot and eWeek. We [...]
