5 matches found
Reflected Cross-Site Scripting (XSS) in Textpattern
Advisory ID: HTB23223 Product: Textpattern Vendor: http://textpattern.com/ Vulnerable Versions: 4.5.5 and probably prior Tested Version: 4.5.5 Advisory Publication: July 9, 2014 without technical details Vendor Notification: July 9, 2014 Vendor Patch: September 20, 2014 Public Disclosure: October...
CVE-2014-4737
Cross-site scripting XSS vulnerability in Textpattern CMS before 4.5.7 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to setup/index.php...
CVE-2014-4737
Textpattern CMS (Textpattern) prior to version 4.5.7 is affected by a Cross-Site Scripting (XSS) vulnerability. The issue arises from insufficient sanitization of input data passed via the PATH_INFO to setup/index.php, enabling remote attackers to inject arbitrary HTML/JavaScript. The CVE is CVE-...
Textpattern 4.5.5 Cross Site Scripting Vulnerability
Textpattern version 4.5.5 suffers from a cross site scripting vulnerability. Product: Textpattern Vendor: http://textpattern.com/ Vulnerable Versions: 4.5.5 and probably prior Tested Version: 4.5.5 Advisory Publication: July 9, 2014 without technical details Vendor Notification: July 9, 2014 Vend...
Textpattern 4.5.5 Cross Site Scripting
Advisory ID: HTB23223 Product: Textpattern Vendor: http://textpattern.com/ Vulnerable Versions: 4.5.5 and probably prior Tested Version: 4.5.5 Advisory Publication: July 9, 2014 without technical details Vendor Notification: July 9, 2014 Vendor Patch: September 20, 2014 Public Disclosure: October...