WordPress Reviews Feed plugin <= 1.1.2 - Cross-Site Request Forgery vulnerability

Cross-Site Request Forgery vulnerability discovered by Sajjad Ahmad jacksparrow in WordPress Plugin Reviews Feed versions = 1.1.2...

Unfixed XSS vulnerability at www.jacksparrowcostumes.com

Security researcher xylitol, has submitted on 19/06/2008 a cross-site-scripting XSS vulnerability affecting www.jacksparrowcostumes.com, which at the time of submission ranked 7643574 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/07/2008. ...