Lucene search
MitreCVELIST:CVE-2015-2807HistorySep 01, 2015 - 2:00 p.m.
CVE-2015-2807
2015-09-0114:00:00
mitre
www.cve.org
2
Cross-site scripting (XSS) vulnerability in js/window.php in the Navis DocumentCloud plugin before 0.1.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the wpbase parameter.
References
packetstormsecurity.com/files/133350/WordPress-Navis-DocumentCloud-0.1-Cross-Site-Scripting.html
seclists.org/fulldisclosure/2015/Aug/78
security.dxw.com/advisories/publicly-exploitable-xss-in-wordpress-plugin-navis-documentcloud/
wordpress.org/plugins/navis-documentcloud/changelog/
wpvulndb.com/vulnerabilities/8164
Related
prion
prion
Cross site scripting
2015-09-01 14:59:00
nuclei
nuclei
Navis DocumentCloud <0.1.1 - Cross-Site Scripting
2021-08-03 17:09:09
patchstack
patchstack
WordPress Navis DocumentCloud Plugin <= 0.1.0 - XSS
2015-03-31 00:00:00
wpvulndb
wpvulndb
nvd
nvd
CVE-2015-2807
2015-09-01 14:59:02
zdt
zdt
WordPress Navis DocumentCloud 0.1 Cross Site Scripting Vulnerability
2015-08-28 00:00:00
cve
cve
CVE-2015-2807
2015-09-01 14:59:02
packetstorm
packetstorm
WordPress Navis DocumentCloud 0.1 Cross Site Scripting
2015-08-27 00:00:00