Lucene search
CVE-2012-6628
Multiple XSS vulnerabilities in Newsletter Manager plugin for WordPress (CVE-2012-6628)
Show more
| Reporter | Title | Published | Views | Family All 5 |
|---|---|---|---|---|
 | WordPress Newsletter Manager Plugin <= 1.0.1 - Multiple XSS | 16 Jan 201400:00 | – | patchstack |
 | CVE-2012-6628 | 16 Jan 201421:55 | – | nvd |
 | Cross site scripting | 16 Jan 201421:55 | – | prion |
 | CVE-2012-6628 | 16 Jan 201421:00 | – | cvelist |
 | Newsletter Manager < 1.0.2 - Authenticated Reflected Cross Site Scripting | 1 Aug 201400:00 | – | wpvulndb |
Node
OROR
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| xyz_em_campName | query param | /admin/create_campaign.php | Cross-site scripting vulnerability allowing arbitrary web script or HTML injection. | CWE-79 |
| xyz_em_campName | query param | /admin/edit_campaign.php | Cross-site scripting vulnerability allowing arbitrary web script or HTML injection. | CWE-79 |
| xyz_em_email | query param | /admin/edit_email.php | Cross-site scripting vulnerability allowing arbitrary web script or HTML injection. | CWE-79 |
| xyz_em_exportbatchSize | query param | /import_export.php | Cross-site scripting vulnerability allowing arbitrary web script or HTML injection. | CWE-79 |
| pagination | query param | /admin/options.php | Cross-site scripting vulnerability allowing arbitrary web script or HTML injection. | CWE-79 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo16 Jan 2014 21:55Current
6Medium risk
Vulners AI Score6
CVSS24.3
EPSS0.00306