Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2007-4088

Malware in sbrugna...

4.3CVSS6.4AI score0.05052EPSS
Exploits1References9
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.11 views

WordPress WP-FeedStats 2.1 HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/25085/info The WP-FeedStats plugin for WordPress is prone to an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting this issue may allow an attacker to execute HTML...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/08/08 12:0 a.m.170 views

WordPress WP-FeedStats HTML注入漏洞

WordPress是一款基于WEB的网络日记程序。 WordPress不正确过滤用户提的输入,远程攻击者可以利用漏洞进行HTML注入攻击,获得敏感信息。 问题是'WP-FeedStats'脚本对用户提交的WEB参数缺少过滤,提交恶意脚本代码作为参数数据,并诱使用户访问,可获得目标用户敏感信息。 WP-FeedStats 2.1 目前没有解决方案提供: http://bueltge.de/wp-feedstats-de-plugin/171/ http://www.example.com/wp1/?feed=rss2&scriptalert1/script...

7.1AI score
Exploits0
Prion
Prion
added 2007/07/31 10:17 a.m.8 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the WP-FeedStats before 2.4 plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, one of which involves an rss2 feed with an invalid or missing blog with an XSS sequence in the query string...

4.3CVSS5.6AI score0.05052EPSS
Exploits1References8Affected Software1
NVD
NVD
added 2007/07/31 10:17 a.m.13 views

CVE-2007-4104

Multiple cross-site scripting XSS vulnerabilities in the WP-FeedStats before 2.4 plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, one of which involves an rss2 feed with an invalid or missing blog with an XSS sequence in the query string...

4.3CVSS5.5AI score0.05052EPSS
Exploits1References8
Cvelist
Cvelist
added 2007/07/31 10:0 a.m.13 views

CVE-2007-4104

Multiple cross-site scripting XSS vulnerabilities in the WP-FeedStats before 2.4 plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, one of which involves an rss2 feed with an invalid or missing blog with an XSS sequence in the query string...

5.5AI score0.05052EPSS
Exploits1References8
CVE
CVE
added 2007/07/31 10:0 a.m.45 views

CVE-2007-4104

WP-FeedStats WordPress plugin (before 2.4) contains multiple XSS vulnerabilities. Attackers can inject arbitrary web script or HTML via unspecified vectors, including an rss2 feed with an invalid or missing blog in the query string. Affects WP-FeedStats up to version 2.3; base CVSS from NVD is 4....

4.3CVSS5.5AI score0.05052EPSS
Exploits1References8Affected Software1
securityvulns
securityvulns
added 2007/07/27 12:0 a.m.52 views

[Full-disclosure] WordPress wp-feedstats persistent XSS

A persistent XSS vulnerability was found in wp-feedstats 2.4 by David Kierznowski http://gnucitizen.org/about/dk of GNUCITIZEN. Details: http://blogsecurity.net/wordpress/news-260707/...

1.8AI score
Exploits0
Exploit DB
Exploit DB
added 2007/07/26 12:0 a.m.24 views

WordPress Plugin WP-FeedStats 2.1 - HTML Injection

source: https://www.securityfocus.com/bid/25085/info The WP-FeedStats plugin for WordPress is prone to an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting this issue may allow an attacker to execute HTML and script code in the context of...

7.4AI score
Exploits0
Rows per page
Query Builder