Lucene search
K

5 matches found

CNVD
CNVD
added 2016/10/13 12:0 a.m.7 views

Wordpress hdw-tube plugin cross-site scripting vulnerability

WordPress is a blogging platform developed using the PHP language by the WordPress Software Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in Wordpress hdw-tube plugin version 1.2. An attacker can exploit...

6.1CVSS6AI score0.0465EPSS
Exploits2References1
CNVD
CNVD
added 2016/10/13 12:0 a.m.7 views

Wordpress hdw-tube plugin cross-site scripting vulnerability (CNVD-2016-09347)

WordPress is a blogging platform developed using the PHP language by the WordPress Software Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in Wordpress hdw-tube plugin version 1.2. An attacker can exploit...

6.1CVSS6AI score0.0465EPSS
Exploits2References1
OSV
OSV
added 2016/10/10 8:59 p.m.2 views

CVE-2016-1000135

Reflected XSS in wordpress plugin hdw-tube v1.2...

6.1CVSS5.8AI score0.0465EPSS
Exploits2References3
Patchstack
Patchstack
added 2016/07/20 12:0 a.m.22 views

WordPress HDW Tube Plugin <= 1.2 - Reflected XSS

This plugin is prone to a cross site scripting vulnerability via /hdw-tube/mychannel.php file. Solution Update the plugin...

6.1CVSS1.8AI score0.0465EPSS
Exploits2References2Affected Software1
WPVulnDB
WPVulnDB
added 2016/04/12 12:0 a.m.21 views

HDW WordPress Video Gallery <= 1.2 - Unauthenticated Reflected Cross-Site Scripting (XSS)

The hdw-tube WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability. PoC http://www.example.com/wp-content/plugins/hdw-tube/playlist.php?playlist=""...

4.3CVSS0.7AI score0.0465EPSS
Exploits3References3Affected Software1
Rows per page
Query Builder