Vulnerability found in Nollie wordpress theme

A cross scripting vulnerability as been found in premium wordpress theme Nollie, this file allows malicious attackers to send unsolicited mail via your website.

This vulnerability was first found and reported to the theme author by Sheridan Computers.

One of the core function files of the website which allows contact forms to be filled out can easily be manipulated. The file in question can be found in /wp-content/themes/nollie/theme-mail.php.

This file contains the following code:

$to=htmlspecialchars( stripslashes( trim( $_POST[‘To’] ) ) );
$name = htmlspecialchars( stripslashes( trim( $_POST[‘Name’] ) ) );
$email = htmlspecialchars( stripslashes( trim( $_POST[‘Email’] ) ) );
$message = htmlspecialchars( stripslashes( trim( $_POST[‘Message’] ) ) );
$subject = htmlspecialchars( stripslashes( trim( $_POST[‘Subject’] ) ) );

Basically this allows the fields to be manipulated and email to be sent via your website. For example, it’s very easy to write code to change the post variables to :

To = victim

From = Victim Pretend Bank

Message = Please log in and send me your bank details

Leave a reply

Your email address will not be published. Required fields are marked *