Lucene search
K

86 matches found

CVE
CVE
added 2014/03/03 4:0 p.m.42 views

CVE-2013-3487

BulletProof Security WordPress plugin (Security Log): multiple XSS in the security log via HTML header fields to 400.php/403.php in versions before 0.49. Root cause appears to be improper input handling. Remediation: update to a fixed release (0.49 or newer) per PatchStack and related advisories;...

4.3CVSS6.1AI score0.02298EPSS
Exploits0References7Affected Software1
Patchstack
Patchstack
added 2013/05/07 12:0 a.m.15 views

WordPress BulletProof Security Plugin <= 0.48.9 - Multiple XSS

Because of these vulnerabilities in the security log, the attackers can inject arbitrary web script or HTML. Solution Update the plugin...

4.3CVSS1.8AI score0.02298EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2012/08/13 10:55 p.m.16 views

CVE-2012-4268

Cross-site scripting XSS vulnerability in bulletproof-security/admin/options.php in the BulletProof Security plugin before .47.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the HTTPACCEPTENCODING header...

4.3CVSS5.8AI score0.02046EPSS
Exploits1References5
Prion
Prion
added 2012/08/13 10:55 p.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in bulletproof-security/admin/options.php in the BulletProof Security plugin before .47.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the HTTPACCEPTENCODING header...

4.3CVSS6.2AI score0.02046EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2012/08/13 10:0 p.m.26 views

CVE-2012-4268

Cross-site scripting XSS vulnerability in bulletproof-security/admin/options.php in the BulletProof Security plugin before .47.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the HTTPACCEPTENCODING header...

5.8AI score0.02046EPSS
Exploits1References5
CVE
CVE
added 2012/08/13 10:0 p.m.49 views

CVE-2012-4268

CVE-2012-4268 describes a cross-site scripting (XSS) vulnerability in the BulletProof Security WordPress plugin. The flaw resides in bulletproof-security/admin/options.php and affects versions before .47.1, allowing remote attackers to inject arbitrary script/HTML via the HTTP_ACCEPT_ENCODING hea...

4.3CVSS6AI score0.02046EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder