182 matches found
Design/Logic Flaw
The gd-rating-system plugin before 2.1 for WordPress has XSS in log.php...
CVE-2017-18591
Summary: CVE-2017-18591 affects the WordPress gd-rating-system plugin prior to 2.1, with an XSS in log.php. The issue stems from insufficient validation in the log.php handling, enabling possible client-side script execution. Affected software: WordPress site using the gd-rating-system plugin (ve...
CVE-2017-18591
The gd-rating-system plugin before 2.1 for WordPress has XSS in log.php...
PT-2019-8522 · Unknown · Gd Rating System
Name of the Vulnerable Software and Affected Versions: gd-rating-system plugin versions prior to 2.1 Description: The issue concerns a problem with the log.php file, where there is XSS. Recommendations: For versions prior to 2.1, update to version 2.1 or later to resolve the issue...
ICS Tactical Security Trends: Analysis of the Most Frequent Security Risks Observed in the Field
Introduction FireEye iSIGHT Intelligence compiled extensive data from dozens of ICS security health assessment engagements ICS Healthcheck performed by Mandiant, FireEye's consulting team, to identify the most pervasive and highest priority security risks in industrial facilities. The information...
WordPress GD Rating System Directory Traversal Vulnerability
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.GD Rating System plugin is used in one of the rating plugin. A directory traversal vulnerability exists in WordPres...
WordPress GD Rating System plugin directory traversal vulnerability (CNVD-2018-00914)
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.GD Rating System plugin is used in one of the rating plugin. A directory traversal vulnerability exists in WordPres...
WordPress GD Rating System plugin directory traversal vulnerability (CNVD-2018-00915)
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.GD Rating System plugin is used in one of the rating plugin. A directory traversal vulnerability exists in version...
WordPress GD Rating System plugin directory traversal vulnerability (CNVD-2018-00913)
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.GD Rating System plugin is used in one of the rating plugin. A directory traversal vulnerability exists in WordPres...
WordPress GD Rating System plugin cross-site scripting vulnerability (CNVD-2018-00917)
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.GD Rating System plugin is used in one of the rating plugin. A cross-site scripting vulnerability exists in version...
WordPress GD Rating System plugin cross-site scripting vulnerability (CNVD-2018-00916)
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.GD Rating System plugin is used in one of the rating plugin. A cross-site scripting vulnerability exists in version...
WordPress GD Rating System Plugin Cross-Site Scripting Vulnerability
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.GD Rating System plugin is used in one of the rating plugin. A cross-site scripting vulnerability exists in version...
WordPress GD Rating System plugin 2.3 - Directory Traversal vulnerability (4)
A fourth Directory Traversal vulnerability found by d4wner in WordPress GD Rating System plugin version 2.3. Directory Traversal in the wp-admin/admin.php panel parameter for the gd-rating-system-tools page. Solution 1/9/2018 - we were unable to find a patched version of this plugin...
WordPress GD Rating System plugin 2.3 - Cross-Site Scripting (XSS) vulnerability (2)
A second Cross-Site Scripting XSS vulnerability found by d4wner in WordPress GD Rating System plugin version 2.3 Solution 1/9/2018 - we were unable to find a patched version of this plugin...
WordPress GD Rating System plugin 2.3 - Cross-Site Scripting (XSS) vulnerability (3)
A third Cross-Site Scripting XSS vulnerability found by d4wner in WordPress GD Rating System plugin version 2.3. XSS via the wp-admin/admin.php panel parameter for the gd-rating-system-information page. Solution 1/9/2018 - we were unable to find a patched version of this plugin...
WordPress GD Rating System plugin 2.3 - Directory Traversal vulnerability (2)
A second Directory Traversal vulnerability found by d4wner in WordPress GD Rating System plugin version 2.3. Directory Traversal in the wp-admin/admin.php panel parameter for the gd-rating-system-information page. Solution 1/9/2018 - we were unable to find a patched version of this plugin...
WordPress GD Rating System plugin 2.3 - Directory Traversal vulnerability (3)
A third Directory Traversal vulnerability found by d4wner in WordPress GD Rating System plugin version 2.3. Directory Traversal in the wp-admin/admin.php panel parameter for the gd-rating-system-transfer page. Solution 1/9/2018 - we were unable to find a patched version of this plugin...
WordPress GD Rating System plugin 2.3 - Cross-Site Scripting (XSS) vulnerability
A Cross-Site Scripting XSS vulnerability found by d4wner in WordPress GD Rating System plugin version 2.3. Vulnerable via the wp-admin/admin.php panel parameter for the gd-rating-system-about page. Solution 1/9/2018 - we were unable to find a patched version of this plugin...
WordPress GD Rating System plugin 2.3 - Cross-Site Scripting (XSS) vulnerability (4)
A fourth Cross-Site Scripting XSS vulnerability found by d4wner in WordPress GD Rating System plugin version 2.3. XSS via the wp-admin/admin.php panel parameter for the gd-rating-system-tools page. Solution 1/9/2018 - we were unable to find a patched version of this plugin...
WordPress GD Rating System plugin 2.3 - Directory Traversal vulnerability
Directory Traversal vulnerability found by d4wner in WordPress GD Rating System plugin version 2.3. Directory Traversal in the wp-admin/admin.php panel parameter for the gd-rating-system-about page. Solution 1/9/2018 - we were unable to find a patched version of this plugin...