4 matches found
CVE-2013-4626
Cross-site scripting XSS vulnerability in the BackWPup plugin before 3.0.13 for WordPress allows remote attackers to inject arbitrary web script or HTML via the tab parameter to wp-admin/admin.php...
CVE-2013-4626
The CVE-2013-4626 issue affects the BackWPup WordPress Plugin (pre-3.0.13). The vulnerability arises from insufficient filtration of the GET parameter “tab” passed to /wp-admin/admin.php, enabling an attacker to inject arbitrary HTML/JavaScript via a crafted link and potentially run scripts in th...
Cross-Site Scripting (XSS) in BackWPup WordPress Plugin
Advisory ID: HTB23161 Product: BackWPup WordPress Plugin Vendor: Inpsyde GmbH Vulnerable Versions: 3.0.12 and probably prior Tested Version: 3.0.12 Vendor Notification: June 19, 2013 Vendor Patch: August 12, 2013 Public Disclosure: August 21, 2013 Vulnerability Type: Cross-Site Scripting CWE-79 C...
WordPress BackWPup 3.0.12 Cross Site Scripting
Advisory ID: HTB23161 Product: BackWPup WordPress Plugin Vendor: Inpsyde GmbH Vulnerable Versions: 3.0.12 and probably prior Tested Version: 3.0.12 Vendor Notification: June 19, 2013 Vendor Patch: August 12, 2013 Public Disclosure: August 21, 2013 Vulnerability Type: Cross-Site Scripting CWE-79 C...