4 matches found
CVE-2015-7666
Multiple cross-site scripting XSS vulnerabilities in the 1 cpupdateMessageItem and 2 cpdeleteMessageItem functions in cppppadminintmessagelist.inc.php in the Payment Form for PayPal Pro plugin before 1.0.2 for WordPress allow remote attackers to inject arbitrary web script or HTML via the cal...
CVE-2015-7666
CVE-2015-7666 documents multiple XSS vulnerabilities in the WordPress plugin Payment Form for PayPal Pro (before 1.0.2). The flaw resides in cp_ppp_admin_int_message_list.inc.php functions cp_updateMessageItem and cp_deleteMessageItem, where the cal parameter can be exploited to inject arbitrary ...
WordPress Payment Form For PayPal Pro 1.0.1 XSS
Vulnerability title: Multiple Reflected XSS in Payment Form for PayPal Pro version 1.0.1 WordPress plugin CVE: CVE-2015-7666 Vendor: WordPress DWBooster Product: Payment Form for PayPal Pro Affected version: 1.0.1 Fixed version: 1.0.2 Reported by: Ibéria Medeiros Vulnerability Details:...
WordPress Payment Form For PayPal Pro 1.0.1 XSS Vulnerability
WordPress DWBooster Payment Form for PayPal Pro plugin version 1.0.1 suffers from a cross site scripting vulnerability. Vulnerability title: Multiple Reflected XSS in Payment Form for PayPal Pro version 1.0.1 WordPress plugin CVE: CVE-2015-7666 Vendor: WordPress DWBooster Product: Payment Form fo...