5 matches found
CVE-2015-4084 - WordPress Free Counter Plugin [Stored XSS]
Exploit Title: WordPress Free Counter Plugin Stored XSS Date: 2015/05/25 Exploit Author: Panagiotis Vagenas Contact: https://twitter.com/panVagenas Vendor Homepage: http://www.free-counter.org Software Link: https://wordpress.org/plugins/free-counter/ Version: 1.1 Tested on: WordPress 4.2.2...
CVE-2015-4084
The CVE-2015-4084 entry affects the WordPress Free Counter plugin (version 1.1). The root cause is insufficient input validation in the value_ parameter of the check_stat action handled by wp-admin/admin-ajax.php, enabling stored XSS via wp_ajax_nopriv_check_stat. Impact: any page showing the plu...
WordPress Plugin Free Counter 1.1 - Persistent Cross-Site Scripting
Exploit Title: WordPress Free Counter Plugin Stored XSS Date: 2015/05/25 Exploit Author: Panagiotis Vagenas Contact: https://twitter.com/panVagenas Vendor Homepage: http://www.free-counter.org Software Link: https://wordpress.org/plugins/free-counter/ Version: 1.1 Tested on: WordPress 4.2.2...
WordPress Free Counter 1.1 Cross Site Scripting
Exploit Title: WordPress Free Counter Plugin Stored XSS Date: 2015/05/25 Exploit Author: Panagiotis Vagenas Contact: https://twitter.com/panVagenas Vendor Homepage: http://www.free-counter.org Software Link: https://wordpress.org/plugins/free-counter/ Version: 1.1 Tested on: WordPress 4.2.2...
WordPress Plugin Free Counter 1.1 - Persistent Cross-Site Scripting
WordPress Plugin Free Counter 1.1 - Persistent Cross-Site Scripting Exploit Title: WordPress Free Counter Plugin Stored XSS Date: 2015/05/25 Exploit Author: Panagiotis Vagenas Contact: https://twitter.com/panVagenas Vendor Homepage: http://www.free-counter.org Software Link:...