scottgonzalez
commented
9 years ago Thanks so much for bringing this to our attention. We've filed the two bugs against the appropriate repos as this affects all of our sites, not just jqueryui.com.
Closed geeknik closed 9 years ago
scottgonzalez
commented
9 years ago Thanks so much for bringing this to our attention. We've filed the two bugs against the appropriate repos as this affects all of our sites, not just jqueryui.com.
Good afternoon, I'm here to report on a couple of security flaws on the jqueryui.com website.
First up, Genericons DOM-based XSS. The Genericons package includes a file called example.html which has been found to be vulnerable to a DOM-based XSS vulnerability. This package is included in various WordPress plugins and themes. For example is included in the TwentyFifteen theme (installed by default) and the very popular JetPack plugin. Remove /wp-content/themes/twentyfifteen/genericons/example.html and the problem goes away.
Advisory: https://blog.sucuri.net/2015/05/jetpack-and-twentyfifteen-vulnerable-to-dom-based-xss.html
Next up, WordPress 4.2.1 (which y'all are running) is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks. WordPress versions ranging from 4.1 and up to (and including) 4.2.1 are vulnerable. Upgrading to WordPress 4.2.2 and these problems go away.