Lucene search
K

4 matches found

securityvulns
securityvulns
added 2015/06/08 12:0 a.m.79 views

Stored XSS in WP Photo Album Plus WordPress Plugin

Advisory ID: HTB23257 Product: WP Photo Album Plus WordPress Plugin Vendor: J.N. Breetvelt Vulnerable Versions: 6.1.2 and probably prior Tested Version: 6.1.2 Advisory Publication: April 29, 2015 without technical details Vendor Notification: April 29, 2015 Vendor Patch: April 29, 2015 Public...

4.3CVSS0.1AI score0.02424EPSS
Exploits3
CVE
CVE
added 2015/05/21 8:0 p.m.65 views

CVE-2015-3647

CVE-2015-3647 concerns multiple stored XSS flaws in WP Photo Album Plus (WordPress plugin) via wppa-ajax-front.php. The affected component handles the wppa-do-comment action and uses unsanitized user input from comemail and comname POST parameters, enabling an attacker to inject arbitrary script ...

4.3CVSS5.8AI score0.02424EPSS
Exploits3References5Affected Software1
0day.today
0day.today
added 2015/05/21 12:0 a.m.68 views

WordPress WP Photo Album Plus 6.1.2 Cross Site Scripting Vulnerability

WordPress WP Photo Album Plus plugin version 6.1.2 suffers from a cross site scripting vulnerability. Product: WP Photo Album Plus WordPress Plugin Vendor: J.N. Breetvelt Vulnerable Versions: 6.1.2 and probably prior Tested Version: 6.1.2 Advisory Publication: April 29, 2015 without technical...

4.3CVSS5.9AI score0.02424EPSS
Exploits3
Packet Storm
Packet Storm
added 2015/05/21 12:0 a.m.60 views

WordPress WP Photo Album Plus 6.1.2 Cross Site Scripting

Advisory ID: HTB23257 Product: WP Photo Album Plus WordPress Plugin Vendor: J.N. Breetvelt Vulnerable Versions: 6.1.2 and probably prior Tested Version: 6.1.2 Advisory Publication: April 29, 2015 without technical details Vendor Notification: April 29, 2015 Vendor Patch: April 29, 2015 Public...

4.3CVSS0.3AI score0.02424EPSS
Exploits3
Rows per page
Query Builder