4 matches found
WordPress S3 Video <=0.983 - Cross-Site Scripting
WordPress S3 Video and before contains a reflected cross-site scripting vulnerability which allows an attacker to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials...
CVE-2016-1000148
Reflected XSS in wordpress plugin s3-video v0.983...
CVE-2016-1000148
Reflected XSS in wordpress plugin s3-video v0.983...
CVE-2016-1000148
Summary (CVE-2016-1000148) : A reflected Cross-Site Scripting (XSS) vulnerability exists in the WordPress S3 Video plugin for versions = 0.984. PoCs and attacker guidance are present in connected references.