Lucene search
High-Tech Bridge SAPATCHSTACK:8E63B93ABE9A744F48B5B60251A8199DHistoryJan 19, 2013 - 12:00 a.m.
WordPress Events Manager Plugin <= 5.3.4 - Multiple XSS
2013-01-1900:00:00
High-Tech Bridge SA
patchstack.com
10
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
Because of these vulnerabilities, the attackers can inject arbitrary web script or HTML via the “scope” parameter to index.php.
Solution
Update the plugin.
| CPE | Name | Operator | Version |
|---|---|---|---|
| events manager | le | 5.3.4 |
Related
htbridge
htbridge
Multiple XSS vulnerabilities in Events Manager WordPress plugin
2013-01-16 00:00:00
seebug
seebug
Conceptronic C54APM多个反射型跨站脚本漏洞
2014-01-13 00:00:00
packetstorm
packetstorm
WordPress Events Manager 5.3.3 Cross Site Scripting
2013-03-07 00:00:00
cve
cve
CVE-2013-1407
2014-05-13 14:55:00
securityvulns
securityvulns
Multiple XSS vulnerabilities in Events Manager WordPress plugin
2013-03-11 00:00:00
wpvulndb
wpvulndb
Events Manager 5.3.3 - Multiple Cross-Site Scripting (XSS)
2014-08-01 10:58:54
prion
prion
Cross site scripting
2014-05-13 14:55:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related for PATCHSTACK:8E63B93ABE9A744F48B5B60251A8199D