7 matches found
EUVD-2015-9309
Malware in sbrugna...
CVE-2015-9469
The content-grabber plugin 1.0 for WordPress has XSS via objfieldname or objfieldid...
WordPress content-grabber plugin cross-site scripting vulnerability
WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. content-grabber is an automated web content grabber plugin used in it. A cross-site scripting vulnerability exists in the WordPres...
CVE-2015-9469
CVE-2015-9469 — WordPress Content Grabber 1.0 XSS . The WordPress plugin content-grabber (version 1.0) is vulnerable to cross-site scripting via the fields obj_field_name or obj_field_id. Multiple sources (NVD, Red Hat, CNVD, CVE lists, and WPVulnDB) corroborate an XSS vulnerability affecting thi...
WordPress Content Grabber 1.0 Cross Site Scripting
Title: WordPress 'Content Grabber' Plugin Version: 1.0 Author: Morten Nørtoft, Kenneth Jepsen & Mikkel Vej Date: 2015-06-14 Download: - https://wordpress.org/plugins/content-grabber/ - https://plugins.svn.wordpress.org/content-grabber/ Notified WordPress: 2015-06-21...
WordPress Content Grabber Plugin <= 1.0 - Cross Site Scripting (XSS)
This plugin is prone to a cross site scripting vulnerability, because "objfieldname" and "objfieldid" parameters are printed unsanitized when the "gettermstaxonomies" action is executed. Solution Update the plugin...
Content Grabber 1.0 - Cross-Site Scripting (XSS)
The content-grabber WordPress plugin was affected by a Cross-Site Scripting XSS security vulnerability...