EUVD-2015-4152

Malware in sbrugna...

CVE-2015-4127

Cross-site scripting XSS vulnerability in the churchadmin plugin before 0.810 for WordPress allows remote attackers to inject arbitrary web script or HTML via the address parameter, as demonstrated by a request to index.php/2015/05/21/churchadmin-registration-form/...

CVE-2015-4127

CVE-2015-4127 concerns the WordPress Church Admin plugin prior to version 0.810 . The issue is a Cross-Site Scripting (XSS) vulnerability where an attacker can inject arbitrary script/HTML through the address parameter in requests like index.php/2015/05/21/church_admin-registration-form/. The roo...