Unwakeable XSS Vulnerability

Internet, Noteworthy, Personal, PHP, Security, Unwakeable, WordPress 0 Minutes

It was brought to my attention a couple days ago that Unwakeable 1.2 contains a cross-site scripting (XSS) vulnerability in the search piece. To test to see if you’re vulnerable, search for this on your Unwakeable site:

If you see a javascript popup after searching, you’re vulnerable to attack and should follow the steps below to fix the vulnerability in Unwakeable 1.2. I’ve already taken steps to fix this vulnerability in Unwakeable 2.0, which will be released shortly.

To fix your installation of Unwakeable 1.2 you need to edit three files: serchform.php, theloop.php, and header.php.

1. searchform.php

First, open searchform.php and change this piece on line 8:

to this:



2. theloop.php


Next, open theloop.php and change this piece on line 42:


printf(__('Search Results for \'%s\'','k2_domain'), $s);


to this:


printf(__('Search Results for \'%s\'','k2_domain'), htmlspecialchars($s));


3. header.php


Finally, open header.php and change this code on line 6:


Search for 

to this:


Search for 

That's it, once you've made those three changes you should no longer be vulnerable to this cross-site scripting attack.  To make sure, just perform the search I mentioned above.  It should no longer produce a javascript pop-up.


You can find out more about this vulnerability at blogsecurity.net.  They have a tool called WordPress Scanner that will scan your WordPress installations for security problems.


Let me know if this fix doesn't work for any of you.

		

	
    

  
Well, now what?


  

    
Work with Me


    
I'm available for hire and always taking new clients, big and small. Got a project or an idea you'd like to discuss? Startup plan but no developer to make it happen? Just get in touch, I'd love to see if I can help you out!

  


  

    
Leave some Feedback


    
Got a question or some updated information releavant to this post? Please, leave a comment! The comments are a great way to get help, I read them all and reply to nearly every comment. Let's talk. 😀

  


  

    
Longren.io is proudly hosted by DigitalOcean
DigitalOcean
    
  



	


	

			


	

			

		

					


		

			
Published by Tyler Longren

		


		

			Hi! I'm Tyler Longren, a freelance web developer. I'm a father to two beautiful daughters and a car stereo enthusiast. 

I like PHP, JavaScript, WordPress, Git, HTML5 & CSS3, and other neat things. I really love the open source community, too.

You can find me on twitter or Google+, and Github.

This is my personal blog and that's it!			
		

	

			

			Published
					

	




			
	
			



	
			

			6 thoughts on “Unwakeable XSS Vulnerability


		
		
    
					
  1. 
			

    2. 
		
  2. 
			
    
				

				
    
					
    Looomz: I think you can’t find it because it looks like you’ve modified your header.php to display a different title than a typical installation of Unwakeable.
    

    I did a little test on your blog and didn’t receive a javascript pop-up, which is good.  So, you’re not vulnerable to this XSS vulnerability.  There’s nothing more you need to modify to protect yourself.
    

    Let me know if you’ve got any more questions or concerns.		
    

    

    0			
    

    

    


    

    
				
    

				
    Reply
    			
    

    3. 
		
  3. 
			

    4. 
		
  4. 
			

    5. 
		
  5. 
			

    6. 
		
  6. 
			
    
				Pingback: Unwakeable XSS Vulnerability — Anti spam and Mail Cleaning Software 			
    

    7. 
		


		
	
	
	
		

							
Leave a Reply					
				

						
				
									
					
					
							
		


		
		

		
This site uses Akismet to reduce spam. Learn how your comment data is processed.