Notice: Undefined offset: 0 in /home/templaza/public_html/plugins/system/tz_guard/tz_guard/browser_detection.php on line 361
Deprecated: strpos(): Non-string needles will be interpreted as strings in the future. Use an explicit chr() call to preserve the current behavior in /home/templaza/public_html/plugins/system/tz_guard/tz_guard/browser_detection.php on line 618 Report: XSS vulnerability in the prettyPhoto jQuery library - TemPlaza | Blog
TemPlaza, the website built and improved by TemPlaza., JSC. We supply templates and other qualified applications on Joomla and WordPress.
Dear beloved customers, today we’re going to give you an important alert about a serious vulnerability that calls XSS (Cross Site Scripting) appearing in prettyPhoto - a plugin for creating slides of images, effects, gallery in Joomla and WordPress webpages.
How is XSS doing in prettyPhoto? Let come along with us to figure it out.
Using a dork: “inurl: / wp-content / plugins / prettyPhoto” to find out the vulnerable websites.
Next, “a document.write” is used to define XSS:
“URL/#prettyPhoto[gallery]/1, / ”
We can see that XSS causes dangerous problems: Denial of Service, redirects, cookies theft, alerts, html code injection...
Then we use “URL / # prettyPhoto [gallery] / 1, /” to get the second XSS, and this is the first serious stage a robbery of cookies, making as follows:
“URL / # prettyPhoto [gallery] / 1, /”
Because of the danger from XSS, WordPress themes, Joomla templates, or other extensions, plugins, documentation which are in version 3.1.5 of prettyPhoto are required to update version 3.1.6 as soon as possible. The vulnerability is fixed in prettyPhoto version 3.1.6.
By updating the version 3.1.6, it will help you to protect your website and you don’t have to worry about the dangers anymore. And just share this post to let other people know!
As you know, Css Hover Effect plays as an important role in developing a website.In this post, I would like to give you some best free css hover effects which can help your site become more attractive...
The importance of fonts for a WordPress website is undeniable because different fonts have different levels of readability, reader friendliness, and different personality and style affecting greatly t...
A gallery to display your photos will decorate your webpage and can surely make it look more professional and lively. There are numerous Joomla! photo gallery extensions out there, and choosing a righ...
If you're looking for freebies Joomla templates with outstanding quality in order to build your own website, you have already reached the right place. On one hand, there are a vast resources of premiu...