9 matches found
EUVD-2015-7571
Malware in sbrugna...
EUVD-2015-4634
Malware in sbrugna...
EUVD-2015-7572
Malware in sbrugna...
CVE-2015-7668
Cross-site scripting XSS vulnerability in includes/MapPinImageSave.php in the Easy2Map plugin before 1.3.0 for WordPress allows remote attackers to inject arbitrary web script or HTML via the mapid parameter...
CVE-2015-7669
Multiple directory traversal vulnerabilities in 1 includes/MapImportCSV2.php and 2 includes/MapImportCSV.php in the Easy2Map plugin before 1.3.0 for WordPress allow remote attackers to include and execute arbitrary files via the csvfile parameter related to "upload file functionality."...
CVE-2015-7668
The CVE-2015-7668 entry concerns the WordPress Easy2Map plugin (pre-1.3.0). A Cross-site Scripting (XSS) flaw exists in includes/MapPinImageSave.php that allows an attacker to inject arbitrary web script/HTML via the map_id parameter. Affected version: Easy2Map
CVE-2015-7669
The CVE-2015-7669 entry affects the WordPress Easy2Map plugin prior to version 1.3.0. The vulnerability is a directory traversal / Local File Inclusion issue in the includes/MapImportCSV2.php and includes/MapImportCSV.php scripts, allowing remote attackers to supply a csvfile parameter via the up...
CVE-2015-7668
Cross-site scripting XSS vulnerability in includes/MapPinImageSave.php in the Easy2Map plugin before 1.3.0 for WordPress allows remote attackers to inject arbitrary web script or HTML via the mapid parameter...
CVE-2015-4614
Multiple SQL injection vulnerabilities in includes/Function.php in the Easy2Map plugin before 1.2.5 for WordPress allow remote attackers to execute arbitrary SQL commands via the mapName parameter in an e2mimgsavemapname action to wp-admin/admin-ajax.php and other unspecified vectors...