Lucene search
MustLivePATCHSTACK:4FD3A299A015EE93B310B5CDBCBF5BF3HistoryDec 04, 2010 - 12:00 a.m.
WordPress Register Plus Plugin <= 3.5.1 - Multiple XSS
2010-12-0400:00:00
MustLive
patchstack.com
11
EPSS
0.004
Percentile
73.0%
Because of these vulnerabilities in wp-login.php, the attackers can inject arbitrary web script or HTML via the “website”, “aim”, “yahoo”, “jabber”, “firstname”, “lastname”, “about”, “pass1”, and “pass2” parameters in a register action.
Solution
Update the plugin.
Related
wpvulndb
wpvulndb
Register Plus <= 3.5.1 - Multiple XSS
2010-11-25 00:00:00
cvelist
cvelist
CVE-2010-4402
2010-12-04 23:00:00
prion
prion
Cross site scripting
2010-12-06 13:37:00
nvd
nvd
CVE-2010-4402
2010-12-06 13:37:32
ubuntucve
ubuntucve
CVE-2010-4402
2010-12-06 00:00:00
cve
cve
CVE-2010-4402
2010-12-06 13:37:32
openvas
openvas
WordPress Register Plus Plugin Multiple Vulnerabilities
2010-12-27 00:00:00