Lucene search
N/APATCHSTACK:DE43D4D113E3B691E1A70ECF1D7F6FC2HistoryApr 13, 2016 - 12:00 a.m.
WordPress WHIZZ Plugin <= 1.0.7 - Cross Site Scripting
2016-04-1300:00:00
N/A
patchstack.com
6
0.001 Low
EPSS
Percentile
50.2%
An unauthenticated reflected cross site scripting vulnerability is in the php code ./whizz/plugins/delete-plugin.php:
7:<strong><?php echo $_GET[‘plugin’]; ?></strong>
Solution
Update the plugin.
Related
cvelist
cvelist
CVE-2016-1000154
2016-10-10 20:00:00
wpvulndb
wpvulndb
WHIZZ <= 1.0.7 - Unauthenticated Reflected Cross-Site Scripting (XSS)
2016-04-13 00:00:00
prion
prion
Cross site scripting
2016-10-10 20:59:00
wpexploit
wpexploit
WHIZZ <= 1.0.7 - Unauthenticated Reflected Cross-Site Scripting (XSS)
2016-04-13 00:00:00
cve
cve
CVE-2016-1000154
2016-10-10 20:59:32
nuclei
nuclei
WordPress WHIZZ <=1.0.7 - Cross-Site Scripting
2021-07-21 22:56:10
nvd
nvd
CVE-2016-1000154
2016-10-10 20:59:32