Lucene search
K

4 matches found

securityvulns
securityvulns
added 2014/01/09 12:0 a.m.77 views

Cross-Site Scripting (XSS) in WP-Cron Dashboard Wordpress plugin

Advisory ID: HTB23189 Product: WP-Cron Dashboard Wordpress plugin Vendor: OKAMOTO Wataru Vulnerable Versions: 1.1.5 and probably prior Tested Version: 1.1.5 Advisory Publication: December 5, 2013 without technical details Vendor Notification: December 5, 2013 Public Disclosure: December 26, 2013...

4.3CVSS6.2AI score0.02035EPSS
Exploits4
CVE
CVE
added 2014/01/02 3:0 p.m.81 views

CVE-2013-6991

The CVE covers WP-Cron Dashboard WordPress plugin vulnerability (versions ≤ 1.1.5) where the procname parameter submitted to /wp-admin/tools.php is not properly sanitized, allowing reflected XSS in the administrator’s browser. Impact is arbitrary HTML/JavaScript execution within the affected site...

4.3CVSS5.8AI score0.02035EPSS
Exploits4References3Affected Software1
0day.today
0day.today
added 2013/12/27 12:0 a.m.89 views

WordPress WP-Cron 1.1.5 Cross Site Scripting Vulnerability

WordPress WP-Cron Dashboard plugin version 1.1.5 suffers from a cross site scripting vulnerability. Product: WP-Cron Dashboard Wordpress plugin Vendor: OKAMOTO Wataru Vulnerable Versions: 1.1.5 and probably prior Tested Version: 1.1.5 Advisory Publication: December 5, 2013 without technical detai...

4.3CVSS5.9AI score0.02035EPSS
Exploits4
Packet Storm
Packet Storm
added 2013/12/26 12:0 a.m.90 views

WordPress WP-Cron 1.1.5 Cross Site Scripting

Advisory ID: HTB23189 Product: WP-Cron Dashboard Wordpress plugin Vendor: OKAMOTO Wataru Vulnerable Versions: 1.1.5 and probably prior Tested Version: 1.1.5 Advisory Publication: December 5, 2013 without technical details Vendor Notification: December 5, 2013 Public Disclosure: December 26, 2013...

4.3CVSS6.5AI score0.02035EPSS
Exploits4
Rows per page
Query Builder