# Exploit Title: WordPress uCan Post plugin <= 1.0.09 Stored XSS # Dork: inurl:/wp-content/plugins/ucan-post/ # Date: 2012/01/18 # Author: Gianluca Brindisi (g@brindi.si @gbrindisi http://brindi.si/g/) # Software Link: http://downloads.wordpress.org/plugin/ucan-post.1.0.09.zip # Version: 1.0.09 Vulnerability You need permissions to publish a post from the public interface: The submission form is not well sanitized and will result in stored xss in admin pages: Name field is not sanitized and i...
