Advisory #: 524
Title: Reflected XSS in wordpress plugin pondol-carousel v1.0
Author: Larry W. Cashdollar, @_larry0
Date: 2016-02-09
Download Site:
Downloads: 551
Vendor Notified: 2016-02-09
Export: Json
Vendor Contact:
Plugin Name: pondol-carousel
There is a reflected XSS vulnerability in the following php code ./pondol-carousel/pages/admin_create.php: 5: var itemid = "<?php echo $_GET["itemid"];?>"; The variable itemid appears to send unsanitized data back to the users browser.
CVE-ID: 2016-1000145
Exploit Code:
Exploit was derived from appearance of first vulnerable parameter in code, there could be more shown above.
  1. http://wp-sitehttp://";</script><script>alert(1);</script>"