5 matches found
EUVD-2014-8926
Malware in sbrugna...
CVE-2014-9100
Cross-site scripting XSS vulnerability in the WhyDoWork AdSense plugin 1.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the idcode parameter in the whydoworkadsense page to wp-admin/options-general.php...
CVE-2014-9100
Cross-site scripting XSS vulnerability in the WhyDoWork AdSense plugin 1.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the idcode parameter in the whydoworkadsense page to wp-admin/options-general.php...
CVE-2014-9100
The CVE-2014-9100 entry concerns the WordPress plugin WhyDoWork AdSense v1.2, which is vulnerable to Cross-site Scripting (XSS) via the idcode parameter on the whydowork_adsense page that redirects to wp-admin/options-general.php. The root cause is unvalidated/reflected input in the idcode parame...
WordPress WhyDoWork AdSense Plugin <= 1.2 - XSS
Because of this vulnerability, the attackers can inject arbitrary web script or HTML via the "idcode" parameter. Solution Update the plugin...