12 matches found
Wordpress Plugin ThreeWP Email Reflector 1.13 - Stored XSS
No description provided by source. !/usr/bin/python ''' Author: loneferret of Offensive Security Product: ThreeWP Email Reflector Version: 1.13 Plugin Site: http://mindreantre.se/ Software Download: http://wordpress.org/extend/plugins/threewp-email-reflector/installation/ Timeline: 29 May 2012:...
wordpress simplemail plugin 1.0.6 - Stored XSS
No description provided by source. !/usr/bin/python ''' Author: loneferret of Offensive Security Product: SimpleMail Version: 1.0.6 free version Vendor Site: http://codecanyon.net/item/wp-simplemail/1130008?ref=tinsley Software Download: http://wordpress.org/extend/plugins/wp-simplemail/ Timeline...
afterlogic mailsuite pro (vmware appliance) 6.3 - Stored XSS
No description provided by source. !/usr/bin/python ''' Author: loneferret of Offensive Security Product: AfterLogic Mailsuite Pro VMware Appliance Version: 6.3 Vendor Site: http://www.afterlogic.com/ Software Download: http://www.afterlogic.com/download/ Timeline: 29 May 2012: Vulnerability...
WordPress SimpleMail Plugin Email字段脚本插入漏洞
CVE ID: CVE-2012-2579 WordPress是一种使用PHP语言和MySQL数据库开发的Blog(博客、网志引擎,用户可以在支持PHP和MySQL数据库的服务器上建立自己的Blog。 SimpleMail plugin for WordPress 1.0.6及其他版本在实现上存在多个漏洞,通过电子邮件的字段"To"、"From"、"Date"、"Subject"传递的输入没有正确过滤即用于显示电子邮件,可被恶意利用执行脚本插入攻击,查看后会在受影响站点的用户浏览器中执行 0 WordPress SimpleMail Plugin 1.x 厂商补丁: WordPress...
WordPress Plugin postie 1.4.3 - Persistent Cross-Site Scripting
WordPress Plugin postie 1.4.3 - Persistent Cross-Site Scripting !/usr/bin/python ''' Author: loneferret of Offensive Security Product: Postie Version: 1.4.3 Software Download: http://wordpress.org/extend/plugins/postie/ Timeline: 29 May 2012: Vulnerability reported to CERT 30 May 2012: Response...
WordPress Plugin ThreeWP Email Reflector 1.13 - Persistent Cross-Site Scripting
WordPress Plugin ThreeWP Email Reflector 1.13 - Persistent Cross-Site Scripting !/usr/bin/python ''' Author: loneferret of Offensive Security Product: ThreeWP Email Reflector Version: 1.13 Plugin Site: http://mindreantre.se/ Software Download:...
Wordpress Postie Plugin 1.4.3 Stored XSS
Exploit for php platform in category web applications !/usr/bin/python ''' Author: loneferret of Offensive Security Product: Postie Version: 1.4.3 Software Download: http://wordpress.org/extend/plugins/postie/ Timeline: 29 May 2012: Vulnerability reported to CERT 30 May 2012: Response received fr...
EmailArchitect Enterprise Email Server 10.0 Stored XSS
Exploit for php platform in category web applications !/usr/bin/python ''' Author: loneferret of Offensive Security Product: EmailArchitect Enterprise Email Server Version: 10.0 Vendor Site: http://www.emailarchitect.net Software Download Link:...
afterlogic mailsuite pro (VMware Appliance) 6.3 - Persistent Cross-Site Scripting
!/usr/bin/python ''' Author: loneferret of Offensive Security Product: AfterLogic Mailsuite Pro VMware Appliance Version: 6.3 Vendor Site: http://www.afterlogic.com/ Software Download: http://www.afterlogic.com/download/ Timeline: 29 May 2012: Vulnerability reported to CERT 30 May 2012: Response...
WordPress Plugin simplemail 1.0.6 - Persistent Cross-Site Scripting
!/usr/bin/python ''' Author: loneferret of Offensive Security Product: SimpleMail Version: 1.0.6 free version Vendor Site: http://codecanyon.net/item/wp-simplemail/1130008?ref=tinsley Software Download: http://wordpress.org/extend/plugins/wp-simplemail/ Timeline: 29 May 2012: Vulnerability report...
WordPress Plugin postie 1.4.3 - Persistent Cross-Site Scripting
!/usr/bin/python ''' Author: loneferret of Offensive Security Product: Postie Version: 1.4.3 Software Download: http://wordpress.org/extend/plugins/postie/ Timeline: 29 May 2012: Vulnerability reported to CERT 30 May 2012: Response received from CERT with disclosure date set to 20 Jul 2012 23 Jul...
Firefox 12 Debuts With Silent Update Mechanism
Mozilla has released version 12 of Firefox and the big change in the popular browser is the inclusion of a new update mechanism that will allow users to enable automatic updates that won’t require user interaction. The mechanism is similar to what Google Chrome has and is part of a trend toward...