2 matches found
CVE-2014-4848
The CVE-2014-4848 entry concerns the Blogstand Smart Banner WordPress plugin (version 1.0). A stored/reflected XSS vulnerability exists in the bs_blog_id parameter passed to wp-admin/options-general.php, enabling attackers to inject arbitrary script/HTML. Impact is web-page script execution by re...
WordPress Blogstand Smart Banner 1.0 Cross Site Scripting
Exploit Title : Wordpress blogstand-smart-banner.1.0 Cross Site Scripting Exploit Author : Ashiyane Digital Security Team Vendor Homepage : http://wordpress.org/plugins/blogstand-smart-banner/ Software Link : http://downloads.wordpress.org/plugin/blogstand-smart-banner.1.0.zip Date : 2014-06-28...