6 matches found
CVE-2013-2714
Cross-site Scripting XSS in WordPress podPress Plugin 8.8.10.13 could allow remote attackers to inject arbitrary web script or html via the 'playerID' parameter...
CVE-2013-2714
CVE-2013-2714 concerns a cross-site scripting (XSS) vulnerability in the WordPress podPress plugin (version 8.8.10.13 and prior). The flaw resides in the SWF-based player at /wp-content/plugins/podpress/players/1pixelout/1pixelout_player.swf, where the parameter playerID is not properly sanitized...
CVE-2013-2714
Cross-site Scripting XSS in WordPress podPress Plugin 8.8.10.13 could allow remote attackers to inject arbitrary web script or html via the 'playerID' parameter...
WordPress podPress Plugin XSS in SWF
Exploit Title: WordPress podPress Plugin XSS in SWF Release Date: 28/03/13 Author: hip Insight-Labs Contact: [email protected] | Website: http://insight-labs.org Software Link: http://downloads.wordpress.org/plugin/podpress.8.8.10.17.zip Tested on: XPsp3 Affected version: 8.8.10.13 before Goog...
WordPress podPress 8.8.10.13 Cross Site Scripting
Exploit Title: WordPress podPress Plugin XSS in SWF Release Date: 28/03/13 Author: hip Insight-Labs Contact: [email protected] | Website: http://insight-labs.org Software Link: http://downloads.wordpress.org/plugin/podpress.8.8.10.17.zip Tested on: XPsp3 Affected version: 8.8.10.13 before Goog...
CVE-2013-2714
creationtimestamp| type| source ---|---|--- 2013-03-11 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38376...