Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackMustLivePATCHSTACK:853FC9DFEA1D7571B4ABC73C9FFE0901
HistoryNov 09, 2009 - 12:00 a.m.

WordPress WP-Cumulus Plugin 1.x - Cross-Site Scripting Vulnerability

2009-11-0900:00:00
MustLive
patchstack.com
9

0.135 Low

EPSS

Percentile

95.6%

JSON

WP-Cumulus plugin for WordPress is prone to a cross-site scripting vulnerability. It is caused by the application fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker could steal cookie-based authentication credentials, also, implement other attacks.

Solution

           Update the plugin.
CPENameOperatorVersion
wp cumulusle1.22

Related

cvelist 1
cve 1
wpvulndb 2
prion 1
nvd 1
cvelist
cvelist
CVE-2009-4168
2009-12-02 18:00:00
cve
cve
CVE-2009-4168
2009-12-02 18:30:00
wpvulndb
wpvulndb
vkontakte-api - vkontakte-api/swf/tagcloud.swf tagcloud Parameter XSS
2014-08-01 10:58:58
snazzy-archives <= 1.7.1 - swf/tagcloud.swf tagcloud Parameter XSS
2014-08-01 10:58:58
prion
prion
Cross site scripting
2009-12-02 18:30:00
nvd
nvd
CVE-2009-4168
2009-12-02 18:30:00

0.135 Low

EPSS

Percentile

95.6%

JSON
Related for PATCHSTACK:853FC9DFEA1D7571B4ABC73C9FFE0901
cvelist1cve1wpvulndb2prion1nvd1