Lucene search
MitreCVELIST:CVE-2013-1407HistoryMay 13, 2014 - 2:00 p.m.
CVE-2013-1407
2014-05-1314:00:00
mitre
www.cve.org
6
Multiple cross-site scripting (XSS) vulnerabilities in the Events Manager plugin before 5.3.5 and Events Manager Pro plugin before 2.2.9 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) scope parameter to index.php; (2) user_name, (3) dbem_phone, (4) user_email, or (5) booking_comment parameter to an event with registration enabled; or the (6) _wpnonce parameter to wp-admin/edit.php.
Related
htbridge
htbridge
Multiple XSS vulnerabilities in Events Manager WordPress plugin
2013-01-16 00:00:00
securityvulns
securityvulns
Multiple XSS vulnerabilities in Events Manager WordPress plugin
2013-03-11 00:00:00
patchstack
patchstack
WordPress Events Manager Plugin <= 5.3.4 - Multiple XSS
2013-01-19 00:00:00
packetstorm
packetstorm
WordPress Events Manager 5.3.3 Cross Site Scripting
2013-03-07 00:00:00
cve
cve
CVE-2013-1407
2014-05-13 14:55:08
nvd
nvd
CVE-2013-1407
2014-05-13 14:55:08
seebug
seebug
Conceptronic C54APM多个反射型跨站脚本漏洞
2014-01-13 00:00:00
prion
prion
Cross site scripting
2014-05-13 14:55:00
wpvulndb
wpvulndb
Events Manager 5.3.3 - Multiple Cross-Site Scripting (XSS)
2014-08-01 10:58:54