4 matches found
CVE-2012-4264
Multiple cross-site scripting XSS vulnerabilities in the Better WP Security betterwpsecurity plugin before 3.2.5 for WordPress allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "server variables," a different vulnerability than CVE-2012-4263...
Better WP Security Plugin for WordPress Multiple XSS
The WordPress Better WP Security Plugin installed on the remote host is affected by multiple cross-site scripting XSS vulnerabilities : - The application fails to properly sanitize user-supplied input to the HTTPUSERAGENT header. CVE-2012-4263 - The application fails to properly sanitize...
CVE-2012-4264
Multiple cross-site scripting XSS vulnerabilities in the Better WP Security betterwpsecurity plugin before 3.2.5 for WordPress allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "server variables," a different vulnerability than CVE-2012-4263...
CVE-2012-4264
The CVE-2012-4264 entry applies to the WordPress plugin Better WP Security (better_wp_security) prior to version 3.2.5. The vulnerability arises from improper sanitization of data in server variables (and related vectors), allowing remote attackers to inject arbitrary web script or HTML (XSS). Af...