5 matches found
Wordpress hdw-tube plugin cross-site scripting vulnerability
WordPress is a blogging platform developed using the PHP language by the WordPress Software Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in Wordpress hdw-tube plugin version 1.2. An attacker can exploit...
Wordpress hdw-tube plugin cross-site scripting vulnerability (CNVD-2016-09347)
WordPress is a blogging platform developed using the PHP language by the WordPress Software Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in Wordpress hdw-tube plugin version 1.2. An attacker can exploit...
CVE-2016-1000135
Reflected XSS in wordpress plugin hdw-tube v1.2...
WordPress HDW Tube Plugin <= 1.2 - Reflected XSS
This plugin is prone to a cross site scripting vulnerability via /hdw-tube/mychannel.php file. Solution Update the plugin...
HDW WordPress Video Gallery <= 1.2 - Unauthenticated Reflected Cross-Site Scripting (XSS)
The hdw-tube WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability. PoC http://www.example.com/wp-content/plugins/hdw-tube/playlist.php?playlist=""...