Lucene search
AdriΓ‘n M. F.PATCHSTACK:C0C1B808B2DECBF70BAE54D44171B3B2HistoryMay 26, 2015 - 12:00 a.m.
WordPress Landing Pages Plugin <= 1.8.4 - XSS
2015-05-2600:00:00
AdriΓ‘n M. F.
patchstack.com
4
0.001 Low
EPSS
Percentile
42.3%
Cross-site scripting (XSS) vulnerability in shared/shortcodes/inbound-shortcodes.php in the Landing Pages plugin before 1.8.5 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via the post parameter to wp-admin/post-new.php.
Solution
Upgrade the plugin.
| CPE | Name | Operator | Version |
|---|---|---|---|
| landing pages | le | 1.8.4 |
Related
seebug
seebug
WordPress Landing Pages 1.8.4 Cross Site Scripting ( CVE-2015-4065 )
2015-09-21 00:00:00
cvelist
cvelist
CVE-2015-4065
2015-05-27 18:00:00
cve
cve
CVE-2015-4065
2015-05-27 18:59:06
nvd
nvd
CVE-2015-4065
2015-05-27 18:59:06
prion
prion
Cross site scripting
2015-05-27 18:59:00
wpvulndb
wpvulndb
WordPress Landing Pages <= 1.8.4 - XSS & SQL Injection
2015-05-25 00:00:00
packetstorm
packetstorm
WordPress Landing Pages 1.8.4 Cross Site Scripting / SQL Injection
2015-05-25 00:00:00
exploitpack
exploitpack
WordPress Plugin Landing Pages 1.8.4 - Multiple Vulnerabilities
2015-05-26 00:00:00
zdt
zdt
exploitdb
exploitdb
WordPress Plugin Landing Pages 1.8.4 - Multiple Vulnerabilities
2015-05-26 00:00:00