3 matches found
CVE-2013-5098
Cross-site scripting XSS vulnerability in admin/admin.php in the Download Monitor plugin before 3.3.6.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the sort parameter, a different vulnerability than CVE-2013-3262...
CVE-2013-5098
Cross-site scripting XSS vulnerability in admin/admin.php in the Download Monitor plugin before 3.3.6.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the sort parameter, a different vulnerability than CVE-2013-3262...
CVE-2013-5098
CVE-2013-5098 is an XSS vulnerability in the Download Monitor WordPress plugin, reported for admin/admin.php. The issue allows remote attackers to inject arbitrary script/HTML via the sort parameter in versions before 3.3.6.2. Public references indicate an XSS flaw distinct from CVE-2013-3262, wi...