10 matches found
DEBIAN-CVE-2016-9263
WordPress through 4.8.2, when domain-based flashmediaelement.swf sandboxing is not used, allows remote attackers to conduct cross-domain Flash injection XSF attacks by leveraging code contained within the wp-includes/js/mediaelement/flashmediaelement.swf file...
newsroom.kbc.com XSS vulnerability
Vulnerable URL: https://newsroom.kbc.com/blog/wp-includes/js/mediaelement/flashmediaelement.swf?jsinitfunctio%gn=alert%60OPENBUGBOUNTY%60 Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated V...
insomnihack.ch XSS vulnerability
Vulnerable URL: http://insomnihack.ch/wp-includes/js/mediaelement/flashmediaelement.swf?jsinitfunctio%gn=alertOPENBUGBOUNTY Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 5349184 V...
pizzaexpress.com.hk XSS vulnerability
Vulnerable URL: http://pizzaexpress.com.hk/wp-includes/js/mediaelement/flashmediaelement.swf?jsinitfunctio%gn=alertOPENBUGBOUNTY Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 6774...
kcmo.gov XSS vulnerability
Vulnerable URL: http://kcmo.gov/citymanagersoffice/wp-includes/js/mediaelement/flashmediaelement.swf?jsinitfunctio%gn=alertOPENBUGBOUNTY Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 163595 VIP website status:|...
zerogroove.fm XSS vulnerability
Vulnerable URL: http://www.zerogroove.fm/js/media/flashmediaelement.swf?jsinitfunctio%gn=alertOPENBUGBOUNTY Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated...
aaranbaby.com.br XSS vulnerability
Vulnerable URL: http://www.aaranbaby.com.br/assets/plugins/mediaelement/flashmediaelement.swf?jsinitfunctio%gn=alertOPENBUGBOUNTY Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank|...
tmagazine.blogs.nytimes.com XSS vulnerability
Vulnerable URL: http://tmagazine.blogs.nytimes.com/wp-includes/js/mediaelement/flashmediaelement.swf?jsinitfunctio%gn=alertOPENBUGBOUNTY Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VI...
xone.vodafone.it XSS vulnerability
Vulnerable URL: https://xone.vodafone.it/wp-includes/js/mediaelement/flashmediaelement.swf?jsinitfunctio%gn=alertOPENBUGBOUNTY Details: Description| Value ---|--- Patched:| Yes, at 24.05.2016 Latest check for patch:| 24.05.2016 10:51 GMT Vulnerability type:| XSS Vulnerability status:| Publicly...
wolverineworldwide.com XSS vulnerability
Open Bug Bounty ID: OBB-151787 Description| Value ---|--- Affected Website:| wolverineworldwide.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...