Lucene search
High-Tech BridgePATCHSTACK:A349094F73B0A284BF8DF4C6D3FA9C07HistoryDec 06, 2013 - 12:00 a.m.
WordPress WP Cron Dashboard Plugin <= 1.1.5 - XSS
2013-12-0600:00:00
High-Tech Bridge
patchstack.com
6
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
Because of this vulnerability, the attackers can inject arbitrary web script or HTML via the “procname” parameter to wp-admin/tools.php.
Solution
Update the plugin.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wp cron dashboard | le | 1.1.5 |
Related
securityvulns
securityvulns
prion
prion
Cross site scripting
2014-01-03 18:54:00
cve
cve
CVE-2013-6991
2014-01-03 18:54:00
wpvulndb
wpvulndb
WP Cron DashBoard <= 1.1.5 - Reflected Cross-Site Scripting (XSS)
2014-08-01 10:58:35
zdt
zdt
WordPress WP-Cron 1.1.5 Cross Site Scripting Vulnerability
2013-12-27 00:00:00
htbridge
htbridge
Cross-Site Scripting (XSS) in WP-Cron Dashboard Wordpress plugin
2013-12-05 00:00:00
packetstorm
packetstorm
WordPress WP-Cron 1.1.5 Cross Site Scripting
2013-12-26 00:00:00
seebug
seebug
Wordpress WP-Cron Dashboard插件跨站脚本漏洞
2013-12-27 00:00:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related for PATCHSTACK:A349094F73B0A284BF8DF4C6D3FA9C07