FlagEm - flagit.php cID Parameter XSS

The FlagEm WordPress plugin was affected by a flagit.php cID Parameter XSS security vulnerability...

WordPress FlagEm Cross Site Scripting

Iranian Exploit DataBase http://iedb.ir Exploit Title : WordPress FlagEm plugin Cross-Site Scripting Vulnerabilities Author : Iranian Exploit DataBase Discovered By : IeDb Email : [email protected] Home : http://iedb.ir Software Link : http://wordpress.org/ Security Risk : High Tested on : Linu...

WordPress FlagEm Plugin - Cross Site Scripting

FlagEm plugin's "cID" parameter is prone to a cross-site scripting vulnerability. It fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker can steal cookie-based...

WordPress Plugin FlagEm - 'cID' Cross-Site Scripting

source: https://www.securityfocus.com/bid/61401/info The FlagEm plugin for WordPress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...