Lucene search
K

4 matches found

securityvulns
securityvulns
added 2015/06/08 12:0 a.m.80 views

Stored XSS in WP Photo Album Plus WordPress Plugin

Advisory ID: HTB23257 Product: WP Photo Album Plus WordPress Plugin Vendor: J.N. Breetvelt Vulnerable Versions: 6.1.2 and probably prior Tested Version: 6.1.2 Advisory Publication: April 29, 2015 without technical details Vendor Notification: April 29, 2015 Vendor Patch: April 29, 2015 Public...

4.3CVSS0.1AI score0.02424EPSS
Exploits3
CVE
CVE
added 2015/05/21 8:0 p.m.65 views

CVE-2015-3647

CVE-2015-3647 concerns multiple stored XSS flaws in WP Photo Album Plus (WordPress plugin) via wppa-ajax-front.php. The affected component handles the wppa-do-comment action and uses unsanitized user input from comemail and comname POST parameters, enabling an attacker to inject arbitrary script ...

4.3CVSS5.8AI score0.02424EPSS
Exploits3References5Affected Software1
Packet Storm
Packet Storm
added 2015/05/21 12:0 a.m.60 views

WordPress WP Photo Album Plus 6.1.2 Cross Site Scripting

Advisory ID: HTB23257 Product: WP Photo Album Plus WordPress Plugin Vendor: J.N. Breetvelt Vulnerable Versions: 6.1.2 and probably prior Tested Version: 6.1.2 Advisory Publication: April 29, 2015 without technical details Vendor Notification: April 29, 2015 Vendor Patch: April 29, 2015 Public...

4.3CVSS0.3AI score0.02424EPSS
Exploits3
0day.today
0day.today
added 2015/05/21 12:0 a.m.69 views

WordPress WP Photo Album Plus 6.1.2 Cross Site Scripting Vulnerability

WordPress WP Photo Album Plus plugin version 6.1.2 suffers from a cross site scripting vulnerability. Product: WP Photo Album Plus WordPress Plugin Vendor: J.N. Breetvelt Vulnerable Versions: 6.1.2 and probably prior Tested Version: 6.1.2 Advisory Publication: April 29, 2015 without technical...

4.3CVSS5.9AI score0.02424EPSS
Exploits3
Rows per page
Query Builder