81 matches found
EUVD-2012-3401
Malware in sbrugna...
EUVD-2012-0919
Malware in sbrugna...
EUVD-2013-7230
Malware in sbrugna...
EUVD-2012-6555
Malware in sbrugna...
EUVD-2012-0918
Malware in sbrugna...
EUVD-2015-5487
Malware in sbrugna...
CVE-2012-3434
Multiple cross-site scripting XSS vulnerabilities in userperspan.php in the Count Per Day module before 3.2 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 page, 2 datemin, or 3 datemax parameter...
WordPress count-per-day plugin cross-site scripting vulnerability
WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in the WordPress count-per-day plugin. An attacker can exploit thi...
CVE-2012-6714
The count-per-day plugin before 3.2.3 for WordPress has XSS via search words...
CVE-2012-6714
The count-per-day plugin before 3.2.3 for WordPress has XSS via search words...
CVE-2012-6714
The CVE-2012-6714 entry concerns the WordPress plugin Count Per Day, specifically versions before 3.2.3. The vulnerability is a cross-site scripting (XSS) flaw exposed via search words handled by the plugin, enabling injection of client-side script when a user interacts with the search feature. S...
WordPress Count per Day Plugin Cross-Site Scripting Vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Count per Day plugin is a plugin that counts the number of visitors to a web page. A cross-site scripting vulnerability exists in...
WordPress Count per Day Plugin < 3.2.6 XSS Vulnerability
The WordPress plugin Copyright C 2019 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the...
CVE-2013-7472
The "Count per Day" plugin before 3.2.6 for WordPress allows XSS via the wp-admin/?page=cpdmetaboxes daytoshow parameter...
CVE-2013-7472
The CVE-2013-7472 issue affects the WordPress Count per Day plugin prior to version 3.2.6, where an XSS vulnerability can be triggered via the daytoshow parameter in wp-admin/?page=cpd_metaboxes. Impact details in connected records indicate cross-site scripting without authentication and with use...
Sql injection
SQL injection vulnerability in counter-options.php in the Count Per Day plugin before 3.4.1 for WordPress allows remote authenticated administrators to execute arbitrary SQL commands via the cpdkeepmonth parameter to wp-admin/options-general.php. NOTE: this can be leveraged using CSRF to allow...
CVE-2015-5533
SQL injection vulnerability in counter-options.php in the Count Per Day plugin before 3.4.1 for WordPress allows remote authenticated administrators to execute arbitrary SQL commands via the cpdkeepmonth parameter to wp-admin/options-general.php. NOTE: this can be leveraged using CSRF to allow...
CVE-2015-5533
CVE-2015-5533 affects the WordPress Count Per Day plugin (before 3.4.1). The flaw is an SQL injection in counter-options.php exposed via the cpd_keep_month parameter to wp-admin/options-general.php. It requires at least authenticated administrator privileges, and CSRF may enable remote attackers ...
WordPress Count Per Day Plugin <= 3.2.3 - Full Path Disclosure
This plugin is prone to multiple script direct request path disclosure vulnerability. Solution Update the plugin...
WordPress Count Per Day Plugin <= 3.2.5 - Cross Site Scripting
This plugin is prone to a cross site scripting vulnerability in "daytoshow" parameter. Solution Update the plugin...