EUVD-2016-1082

Malware in sbrugna...

Wordpress indexisto plugin cross-site scripting vulnerability

WordPress is the WordPress Software Foundation a set of blogging platform developed using the PHP language, the platform supports in PHP and MySQL server set up personal blog site. indexisto is one of the fast search plugin. A cross-site scripting vulnerability exists in version 1.0.5 of the...

CVE-2016-1000138

Reflected XSS in wordpress plugin indexisto v1.0.5...

CVE-2016-1000138

Reflected XSS in wordpress plugin indexisto v1.0.5...

Cross site scripting

Reflected XSS in wordpress plugin indexisto v1.0.5...

CVE-2016-1000138

Reflected XSS in wordpress plugin indexisto v1.0.5...

CVE-2016-1000138

The CVE-2016-1000138 entry relates to the WordPress indexisto plugin (v1.0.5 and earlier) with a reflected XSS vulnerability in the plugin’s indexisto component. The connected Nuclei template and related advisories confirm that the flaw allows an attacker to execute arbitrary browser-side script ...

WordPress Indexisto Plugin <= 1.0.5 - Reflected XSS

This plugin is prone to a cross site scripting vulnerability. Solution Upgrade the plugin...

Indexisto WordPress Site Search <= 1.0.5 - Unauthenticated Reflected Cross-Site Scripting (XSS)

The indexisto WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability. PoC http://www.example.com/wp-content/plugins/indexisto/assets/js/indexisto-inject.php?indexistoindex=""...