229 matches found
CVE-2013-5977
Cross-site request forgery CSRF vulnerability in Cart66Product.php in the Cart66 Lite plugin before 1.5.1.15 for WordPress allows remote attackers to hijack the authentication of administrators for requests that 1 create or modify products or conduct cross-site scripting XSS attacks via the 2...
CVE-2013-2702
Cross-site request forgery CSRF vulnerability in the Easy AdSense Lite plugin before 6.10 for WordPress allows remote attackers to hijack the authentication of arbitrary users for requests that modify this plugin's settings...
WordPress WP Banners Lite Plugin Cross Site Scripting Vulnerability
WordPress WP Banners Lite Plugin is prone to an XSS vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
WordPress Banners Lite Plugin - HTML Injection Vulnerability
WordPress Banners Lite plugin is prone to an HTML-injection vulnerability. It fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker can steal cookie-based authentication...
CVE-2011-5192
Cross-site scripting XSS vulnerability in pretty-bar.php in Pretty Link Lite plugin before 1.5.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the slug parameter, a different vulnerability than CVE-2011-5191...
Cross site scripting
Cross-site scripting XSS vulnerability in pretty-bar.php in Pretty Link Lite plugin before 1.5.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the slug parameter, a different vulnerability than CVE-2011-5191...
Cross site scripting
Cross-site scripting XSS vulnerability in pretty-bar.php in Pretty Link Lite plugin before 1.5.4 for WordPress allows remote attackers to inject arbitrary web script or HTML via the slug parameter, a different vulnerability than CVE-2011-5192...
CVE-2011-5192
CVE-2011-5192 describes a Cross-site scripting (XSS) vulnerability in the Pretty Link Lite WordPress plugin. Affected component: pretty-bar.php in Pretty Link Lite. Vulnerable until version 1.5.5 (i.e., "before 1.5.6"). Root cause: XSS via the slug parameter, enabling an attacker to inject arbitr...
CVE-2011-5192
Cross-site scripting XSS vulnerability in pretty-bar.php in Pretty Link Lite plugin before 1.5.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the slug parameter, a different vulnerability than CVE-2011-5191...