3 matches found
timeweb.com Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1074584 Security Researcher sardharabadal Helped patch 277 vulnerabilities Received 3 Coordinated Disclosure badges Received 3 recommendations , a holder of 3 badges for responsible and coordinated disclosure, found a security vulnerability affecting timeweb.com website an...
CVE-2017-18506
The woocommerce-pdf-invoices-packing-slips plugin before 2.0.13 for WordPress has XSS via the tab or section variable on settings screens...
CVE-2017-18506
CVE-2017-18506 affects the WordPress plugin woocommerce-pdf-invoices-packing-slips (before 2.0.13). The vulnerability is an XSS flaw triggered via the tab or section variable on the plugin’s settings screens. Public documentation consistently identifies this as a client-side script execution risk...