6 matches found
EUVD-2012-2897
Malware in sbrugna...
CVE-2012-2917
Cross-site scripting XSS vulnerability in the Share and Follow plugin 1.80.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the CDN API Key cnd-key in a share-and-follow-menu page to wp-admin/admin.php...
Cross site scripting
Cross-site scripting XSS vulnerability in the Share and Follow plugin 1.80.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the CDN API Key cnd-key in a share-and-follow-menu page to wp-admin/admin.php...
CVE-2012-2917
CVE-2012-2917 affects the WordPress plugin Share and Follow (version ≤ 1.80.3). The vulnerability is a Cross-site Scripting (XSS) flaw triggered when attackers inject script or HTML via the CDN API Key (cnd-key) in a share-and-follow-menu page to wp-admin/admin.php. The NVD entry reports a medium...
CVE-2012-2917
Cross-site scripting XSS vulnerability in the Share and Follow plugin 1.80.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the CDN API Key cnd-key in a share-and-follow-menu page to wp-admin/admin.php...
WordPress Share And Follow 1.80.3 Cross Site Scripting
Hi We have used our tool, THAPS, to identify vulnerabilities in this WordPress plugin. We have confirmed at least one of the reported vulnerabilities and created a working exploit located below. Attached is one or more log files containing the output of our tool, identifying the location of the...