Lucene search
John LeitchEDB-ID:34976HistoryNov 08, 2010 - 12:00 a.m.
WordPress Plugin Vodpod Video Gallery 3.1.5 - 'vodpod_gallery_thumbs.php' Cross-Site Scripting
2010-11-0800:00:00
John Leitch
www.exploit-db.com
18
AI Score
7.4
Confidence
Low
source: https://www.securityfocus.com/bid/44715/info
The Vodpod Video Gallery Plugin for Wordpress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.
An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials and launch other attacks.
Vodpod Video Gallery 3.1.5 is vulnerable; other versions may also be affected.
http://www.example.com/wordpress/wp-content/plugins/vodpod-video-gallery/vodpod_gallery_thumbs.php?gid=%22%3E%3Cscript%3Ealert(0)%3C/script%3ERelated
prion
prion
Cross site scripting
2011-10-07 10:55:00
patchstack
patchstack
cvelist
cvelist
CVE-2010-4875
2011-10-07 10:00:00
nvd
nvd
CVE-2010-4875
2011-10-07 10:55:07
wpvulndb
wpvulndb
Vodpod Video Gallery <= 3.1.7 - Cross-Site Scripting (XSS)
2010-11-05 00:00:00
cve
cve
CVE-2010-4875
2011-10-07 10:55:07