Lucene search
K

7 matches found

seebug.org
seebug.org
added 2018/04/28 12:0 a.m.45 views

WordPress Plugin File Upload 4.3.3 - Stored Cross-Site Scripting (PoC)

0x01 漏洞概述 Wordpress的插件WordPress File Upload v4.3.3及其以前版本在管理后台存在一处存储型xss漏洞。攻击者可以通过该漏洞执行js脚本,获取管理员cookie。 漏洞名称:WordPress Plugin File Upload 4.3.3 - Stored Cross-Site Scripting PoC 漏洞来源:https://www.exploit-db.com/exploits/44444/ CVE:CVE-2018-9844 影响组件:WordPress Plugin File Upload...

4.3CVSS1AI score0.03844EPSS
Exploits6
0day.today
0day.today
added 2018/04/11 12:0 a.m.46 views

WordPress File Upload Plugin 4.3.3 - Stored Cross Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: WordPress Plugin WordPress File Upload 4.3.3 - Stored XSS Exploit Author: ManhNho Vendor Homepage: https://www.iptanus.com/ Software Link: https://downloads.wordpress.org/plugin/wp-file-upload.zip Version: 4.3.3 Tested on: Windo...

6.6AI score0.03844EPSS
Exploits6
Exploit DB
Exploit DB
added 2018/04/10 12:0 a.m.42 views

WordPress Plugin File Upload 4.3.3 - Stored Cross-Site Scripting (PoC)

Exploit Title: WordPress Plugin WordPress File Upload 4.3.3 - Stored XSS Date: 06/04/2018 Exploit Author: ManhNho Vendor Homepage: https://www.iptanus.com/ Software Link: https://downloads.wordpress.org/plugin/wp-file-upload.zip Version: 4.3.3 Tested on: Windows 7 / Cent OS 6.5 CVE : CVE-2018-984...

6.1CVSS7AI score0.03844EPSS
Exploits6
Packet Storm
Packet Storm
added 2018/04/10 12:0 a.m.89 views

WordPress File Upload 4.3.3 Cross Site Scripting

Exploit Title: WordPress Plugin WordPress File Upload 4.3.3 - Stored XSS Date: 06/04/2018 Exploit Author: ManhNho Vendor Homepage: https://www.iptanus.com/ Software Link: https://downloads.wordpress.org/plugin/wp-file-upload.zip Version: 4.3.3 Tested on: Windows 7 / Cent OS 6.5 CVE : CVE-2018-984...

6.3AI score0.03844EPSS
Exploits6
exploitpack
exploitpack
added 2018/04/10 12:0 a.m.139 views

WordPress Plugin File Upload 4.3.3 - Stored Cross-Site Scripting (PoC)

WordPress Plugin File Upload 4.3.3 - Stored Cross-Site Scripting PoC Exploit Title: WordPress Plugin WordPress File Upload 4.3.3 - Stored XSS Date: 06/04/2018 Exploit Author: ManhNho Vendor Homepage: https://www.iptanus.com/ Software Link: https://downloads.wordpress.org/plugin/wp-file-upload.zip...

4.3CVSS6AI score0.03844EPSS
Exploits6
NVD
NVD
added 2018/04/07 7:29 a.m.22 views

CVE-2018-9844

The Iptanus WordPress File Upload plugin before 4.3.4 for WordPress mishandles Settings attributes, leading to XSS...

6.1CVSS6.3AI score0.03844EPSS
Exploits6References3
CVE
CVE
added 2018/04/07 7:0 a.m.66 views

CVE-2018-9844

The CVE-2018-9844 affects the Iptanus WordPress File Upload plugin for WordPress (versions up to and including 4.3.3). The root cause is mishandling of the Settings attribute, which enables stored Cross-Site Scripting (XSS) in the admin panel (notably via the Edit_Settings functionality). Impact ...

6.1CVSS6.2AI score0.03844EPSS
Exploits6References3Affected Software1
Rows per page
Query Builder