4 matches found
CVE-2015-7666
Multiple cross-site scripting XSS vulnerabilities in the 1 cpupdateMessageItem and 2 cpdeleteMessageItem functions in cppppadminintmessagelist.inc.php in the Payment Form for PayPal Pro plugin before 1.0.2 for WordPress allow remote attackers to inject arbitrary web script or HTML via the cal...
CVE-2015-7666
CVE-2015-7666 documents multiple XSS vulnerabilities in the WordPress plugin Payment Form for PayPal Pro (before 1.0.2). The flaw resides in cp_ppp_admin_int_message_list.inc.php functions cp_updateMessageItem and cp_deleteMessageItem, where the cal parameter can be exploited to inject arbitrary ...
WordPress Payment Form For PayPal Pro 1.0.1 XSS Vulnerability
WordPress DWBooster Payment Form for PayPal Pro plugin version 1.0.1 suffers from a cross site scripting vulnerability. Vulnerability title: Multiple Reflected XSS in Payment Form for PayPal Pro version 1.0.1 WordPress plugin CVE: CVE-2015-7666 Vendor: WordPress DWBooster Product: Payment Form fo...
WordPress Payment Form For PayPal Pro 1.0.1 XSS
Vulnerability title: Multiple Reflected XSS in Payment Form for PayPal Pro version 1.0.1 WordPress plugin CVE: CVE-2015-7666 Vendor: WordPress DWBooster Product: Payment Form for PayPal Pro Affected version: 1.0.1 Fixed version: 1.0.2 Reported by: Ibéria Medeiros Vulnerability Details:...