Lucene search
Prajal KulkarniPATCHSTACK:4235F4B00DA4810F5A094422912A182DHistoryJun 23, 2014 - 12:00 a.m.
WordPress Social Login Plugin <= 2.0.3 - XSS
2014-06-2300:00:00
Prajal Kulkarni
patchstack.com
7
0.001 Low
EPSS
Percentile
50.0%
Because of this vulnerability in services/diagnostics.php, the attackers can inject arbitrary web script or HTML via the “xhrurl” parameter.
Solution
Update the plugin.
| CPE | Name | Operator | Version |
|---|---|---|---|
| social login | le | 2.0.3 |
Related
openvas
openvas
WordPress Social Login 'xhrurl' Parameter XSS Vulnerability
2014-08-26 00:00:00
wpvulndb
wpvulndb
Wordpress Social Login < 2.1.5 - XSS
2014-04-25 00:00:00
nvd
nvd
CVE-2014-4576
2014-07-02 18:55:09
cve
cve
CVE-2014-4576
2014-07-02 18:55:09
prion
prion
Cross site scripting
2014-07-02 18:55:00
cvelist
cvelist
CVE-2014-4576
2014-07-02 18:00:00