Lucene search
Japan Vulnerability NotesJVN:15646988HistoryJun 06, 2012 - 12:00 a.m.
JVN#15646988: WordPress plugin WassUp vulnerable to cross-site scripting
2012-06-0600:00:00
Japan Vulnerability Notes
jvn.jp
12
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.006 Low
EPSS
Percentile
78.9%
WassUp is a WordPress plugin that tracks visitors to the blog. WassUp contains a cross-site scripting vulnerability.
Impact
An arbitrary script may be executed on the user’s web browser.
Solution
Update the software
Update to the latest version according to the information provided by the developer.
Products Affected
- WassUp versions 1.8.3 and earlier
Related
cve
cve
CVE-2012-2633
2012-06-15 19:55:01
CVE-2016-10919
2019-08-22 13:15:11
nvd
nvd
CVE-2012-2633
2012-06-15 19:55:01
CVE-2016-10919
2019-08-22 13:15:11
wpvulndb
wpvulndb
Wassup < 1.8.3.1 - XSS
2012-06-06 00:00:00
patchstack
patchstack
WordPress WassUp Plugin <= 1.8.3.0 - XSS
2012-05-14 00:00:00
prion
prion
Cross site scripting
2012-06-15 19:55:00
Security feature bypass
2019-08-22 13:15:00
cvelist
cvelist
CVE-2012-2633
2012-06-15 19:00:00
CVE-2016-10919
2019-08-22 12:24:39
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.006 Low
EPSS
Percentile
78.9%
Related for JVN:15646988