CVE-2013-2695
CVE-2013-2695 concerns the WordPress WP Symposium plugin prior to 13.04, with a cross-site scripting (XSS) flaw in invite.php. The vulnerability allows remote attackers to inject arbitrary script/HTML through the u parameter. Affected component: invite.php in the WP Symposium plugin. Root cause: ...