12 matches found
WordPress Genericons Cross-Site Scripting (CVE-2015-3429)
A cross-site scripting vulnerability was found in the Genericons web font used in WordPress sites. A remote attacker could use this vulnerability to execute malicious JavaScript code on the client browser...
Debian DSA-3328-1 : wordpress - security update
Several vulnerabilities have been found in Wordpress, the popular blogging engine. - CVE-2015-3429 The file example.html in the Genericicons icon font package and twentyfifteen Wordpress theme allowed for cross site scripting. - CVE-2015-5622 The robustness of the shortcodes HTML tags filter has...
[SECURITY] [DSA 3328-2] wordpress regression update
------------------------------------------------------------------------- Debian Security Advisory DSA-3328-2 [email protected] https://www.debian.org/security/ Thijs Kinkhorst August 04, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3328-1] wordpress security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3328-1 [email protected] https://www.debian.org/security/ Thijs Kinkhorst August 04, 2015 https://www.debian.org/security/faq -...
Debian: Security Advisory (DSA-3328-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2015-3429
Cross-site scripting XSS vulnerability in example.html in Genericons before 3.3.1, as used in WordPress before 4.2.2, allows remote attackers to inject arbitrary web script or HTML via a fragment identifier...
CVE-2015-3429
Cross-site scripting XSS vulnerability in example.html in Genericons before 3.3.1, as used in WordPress before 4.2.2, allows remote attackers to inject arbitrary web script or HTML via a fragment identifier...
CVE-2015-3429
Cross-site scripting XSS vulnerability in example.html in Genericons before 3.3.1, as used in WordPress before 4.2.2, allows remote attackers to inject arbitrary web script or HTML via a fragment identifier...
CVE-2015-3429
The CVE-2015-3429 issue is a Cross-Site Scripting (XSS) vulnerability in the Genericons icon font package (example.html) and in the Twenty Fifteen WordPress theme, exploitable via a fragment identifier. Affected software includes Genericons prior to version 3.3.1 and WordPress prior to 4.2.2. Deb...
CVE-2015-3429
Cross-site scripting XSS vulnerability in example.html in Genericons before 3.3.1, as used in WordPress before 4.2.2, allows remote attackers to inject arbitrary web script or HTML via a fragment identifier...
Wordpress Twenty Fifteen Theme - DOM XSS Vulnerability - CVE-2015-3429
Information -------------------- Advisory by Netsparker. Name: DOM XSS Vulnerability in Twenty Fifteen WordPress Theme Affected Software : WordPress Affected Versions: 4.2.1 and probably below Vendor Homepage : https://wordpress.org/ and https://wordpress.org/themes/twentyfifteen/ Vulnerability...
WordPress Twenty Fifteen 4.2.1 Cross Site Scripting
Information -------------------- Advisory by Netsparker. Name: DOM XSS Vulnerability in Twenty Fifteen WordPress Theme Affected Software : WordPress Affected Versions: 4.2.1 and probably below Vendor Homepage : https://wordpress.org/ and https://wordpress.org/themes/twentyfifteen/ Vulnerability...