5 matches found
Reflected Cross-Site Scripting (XSS) in EWWW Image Optimizer WordPress Plugin
Advisory ID: HTB23234 Product: EWWW Image Optimizer WordPress plugin Vendor: Shane Bishop Vulnerable Versions: 2.0.1 and probably prior Tested Version: 2.0.1 Advisory Publication: September 17, 2014 without technical details Vendor Notification: September 17, 2014 Vendor Patch: September 24, 2014...
CVE-2014-6243
Cross-site scripting XSS vulnerability in the EWWW Image Optimizer plugin before 2.0.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the error parameter in the ewww-image-optimizer.php page to wp-admin/options-general.php, which is not properly handled in a pngo...
CVE-2014-6243
The CVE-2014-6243 vulnerability affects the WordPress plugin EWWW Image Optimizer, specifically versions prior to 2.0.2. A reflected Cross-Site Scripting (XSS) flaw exists in the ewww-image-optimizer.php page when crafting the page parameter passed to wp-admin/options-general.php. The error messa...
WordPress EWWW Image Optimizer 2.0.1 Cross Site Scripting Vulnerability
WordPress EWWW Image Optimizer plugin version 2.0.1 suffers from a cross site scripting vulnerability. Product: EWWW Image Optimizer WordPress plugin Vendor: Shane Bishop Vulnerable Versions: 2.0.1 and probably prior Tested Version: 2.0.1 Advisory Publication: September 17, 2014 without technical...
WordPress EWWW Image Optimizer 2.0.1 Cross Site Scripting
Advisory ID: HTB23234 Product: EWWW Image Optimizer WordPress plugin Vendor: Shane Bishop Vulnerable Versions: 2.0.1 and probably prior Tested Version: 2.0.1 Advisory Publication: September 17, 2014 without technical details Vendor Notification: September 17, 2014 Vendor Patch: September 24, 2014...