Lucene search
John LeitchPATCHSTACK:548E68ECB45EC77D976E0C4C2CC9D778HistoryDec 08, 2010 - 12:00 a.m.
WordPress Processing Embed Plugin 0.5 - Cross-Site Scripting Vulnerability
2010-12-0800:00:00
John Leitch
patchstack.com
10
EPSS
0.005
Percentile
76.0%
This Processing Embed plugin’s “pluginurl” parameter is prone to a cross-site scripting vulnerability. It fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker can steal cookie-based authentication credentials. Other attacks are also possible.
Solution
Update the plugin.
References
Related
prion
prion
Cross site scripting
2011-03-01 22:00:00
nvd
nvd
CVE-2010-4747
2011-03-01 22:00:01
cve
cve
CVE-2010-4747
2011-03-01 22:00:01
cvelist
cvelist
CVE-2010-4747
2011-03-01 21:00:00
openvas
openvas
exploitdb
exploitdb