Lucene search
K

5 matches found

0day.today
0day.today
added 2017/11/01 12:0 a.m.57 views

WordPress User Login History 1.5.2 Cross Site Scripting Vulnerability

WordPress User Login History plugin version 1.5.2 suffers from a cross site scripting vulnerability. Product: User Login History Wordpress Plugin - https://wordpress.org/plugins/user-login-history/ Vendor: Er Faiyaz Alam Tested version: 1.5.2 CVE ID: CVE-2017-15867 CVE description Multiple...

4.3CVSS6.2AI score0.01041EPSS
Exploits2
Packet Storm
Packet Storm
added 2017/10/31 12:0 a.m.90 views

WordPress User Login History 1.5.2 Cross Site Scripting

Product: User Login History Wordpress Plugin - https://wordpress.org/plugins/user-login-history/ Vendor: Er Faiyaz Alam Tested version: 1.5.2 CVE ID: CVE-2017-15867 CVE description Multiple cross-site scripting XSS vulnerabilities in the user-login-history plugin through 1.5.2 for WordPress allow...

6.5AI score0.01041EPSS
Exploits2
NVD
NVD
added 2017/10/24 7:29 p.m.16 views

CVE-2017-15867

Multiple cross-site scripting XSS vulnerabilities in the user-login-history plugin through 1.5.2 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 datefrom, 2 dateto, 3 userid, 4 username, 5 countryname, 6 browser, 7 operatingsystem, or 8 ipaddress parameter to...

6.1CVSS6.2AI score0.01041EPSS
Exploits2References2
Cvelist
Cvelist
added 2017/10/24 7:0 p.m.18 views

CVE-2017-15867

Multiple cross-site scripting XSS vulnerabilities in the user-login-history plugin through 1.5.2 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 datefrom, 2 dateto, 3 userid, 4 username, 5 countryname, 6 browser, 7 operatingsystem, or 8 ipaddress parameter to...

6.2AI score0.01041EPSS
Exploits2References2
CVE
CVE
added 2017/10/24 7:0 p.m.51 views

CVE-2017-15867

The CVE-2017-15867 case concerns the WordPress User Login History plugin (versions up to 1.5.2). The issue is a Cross-Site Scripting (XSS) vulnerability where user-supplied HTTP GET parameters (date_from, date_to, user_id, username, country_name, browser, operating_system, ip_address) are inserte...

6.1CVSS6.1AI score0.01041EPSS
Exploits2References2Affected Software1
Rows per page
Query Builder