Lucene search
N/APATCHSTACK:CB96B0889EA50EC0FCDCC8862BFB3DD8HistoryJul 10, 2015 - 12:00 a.m.
WordPress GD bbPress Attachments Plugin <= 2.2 - XSS
2015-07-1000:00:00
N/A
patchstack.com
3
0.016 Low
EPSS
Percentile
87.7%
This vulnerability is in forms/panels.php. It allows an attacker to inject arbitrary web script or HTML via the “tab” parameter that is in the gdbbpress_attachments page to wp-admin/edit.php.
Solution
Update the plugin.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gd bbpress attachments | le | 2.2 |
Related
prion
prion
Cross site scripting
2015-08-18 17:59:00
cvelist
cvelist
CVE-2015-5481
2015-08-18 17:00:00
cve
cve
CVE-2015-5481
2015-08-18 17:59:13
wpvulndb
wpvulndb
nvd
nvd
CVE-2015-5481
2015-08-18 17:59:13