Lucene search
High-Tech Bridge Security ResearchPATCHSTACK:9AE2F26BE9E5A3AA86ED724EBFDCC4E5HistoryJan 31, 2015 - 12:00 a.m.
WordPress Easing Slider Plugin <= 2.2.0.6 - XSS
2015-01-3100:00:00
High-Tech Bridge Security Research
patchstack.com
5
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
Because of this vulnerability, the attackers can inject arbitrary web script or HTML via the “edit” parameter.
Solution
Upgrade the plugin.
| CPE | Name | Operator | Version |
|---|---|---|---|
| easing-slider | le | 2.2.0.6 |
Related
htbridge
htbridge
Two Reflected XSS Vulnerabilities in Easing Slider WordPress Plugin
2015-01-21 00:00:00
wpvulndb
wpvulndb
Easing Slider <= 2.2.0.6 - 2 x Cross-Site Scripting (XSS)
2015-02-11 00:00:00
zdt
zdt
WordPress Easing Slider 2.2.0.6 Cross Site Scripting Vulnerability
2015-02-11 00:00:00
cve
cve
CVE-2015-1436
2015-02-16 15:59:00
prion
prion
Cross site scripting
2015-02-16 15:59:00
packetstorm
packetstorm
WordPress Easing Slider 2.2.0.6 Cross Site Scripting
2015-02-11 00:00:00
cvelist
cvelist
CVE-2015-1436
2015-02-16 15:00:00
checkpoint_advisories
checkpoint_advisories
WordPress Easing Slider Plugin Cross-Site Request Forgery (CVE-2015-1436)
2015-03-01 00:00:00
securityvulns
securityvulns
Two Reflected XSS Vulnerabilities in Easing Slider WordPress Plugin
2015-02-22 00:00:00
patchstack
patchstack
WordPress Easing Slider Plugin <= 2.2.0.6 - XSS
2015-01-31 00:00:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related for PATCHSTACK:9AE2F26BE9E5A3AA86ED724EBFDCC4E5