16 matches found
EUVD-2015-9243
Malware in sbrugna...
EUVD-2015-9244
Malware in sbrugna...
CVE-2015-9403
The neuvoo-jobroll plugin 2.0 for WordPress has neuvoolocation XSS...
CVE-2015-9404
The neuvoo-jobroll plugin 2.0 for WordPress has neuvookeywords XSS...
CVE-2015-9403
The neuvoo-jobroll plugin 2.0 for WordPress has neuvoolocation XSS...
CVE-2015-9404
The neuvoo-jobroll plugin 2.0 for WordPress has neuvookeywords XSS...
Cross site scripting
The neuvoo-jobroll plugin 2.0 for WordPress has neuvookeywords XSS...
Cross site scripting
The neuvoo-jobroll plugin 2.0 for WordPress has neuvoolocation XSS...
CVE-2015-9404
The CVE-2015-9404 issue concerns the neuvoo-jobroll WordPress plugin (v2.0). The connected sources describe a cross-site scripting (XSS) vulnerability triggered by neuvoo_keywords within the plugin, with activity described as unauthenticated reflected XSS in at least one source (WPVulndb). The or...
CVE-2015-9404
The neuvoo-jobroll plugin 2.0 for WordPress has neuvookeywords XSS...
CVE-2015-9403
The neuvoo-jobroll plugin 2.0 for WordPress has neuvoolocation XSS...
CVE-2015-9403
The NeuVoo-jobroll WordPress plugin, version 2.0, is affected by a neuvoo_location reflected XSS vulnerability. Public sources (WPVulnDB and NVD) describe it as an unauthenticated, reflected cross-site scripting issue, indicating exploitation may occur via the neuvoo_location parameter. Root caus...
WordPress Neuvoo-Jobroll插件跨站脚本漏洞
漏洞简介: WordPress是WordPress软件基金会的一套使用PHP语言开发的博客平台,该平台支持在PHP和MySQL的服务器上架设个人博客网站。Neuvoo-Jobroll是其中的一个工作机会聚合插件。 WordPress Neuvoo-Jobroll插件中存在跨站脚本漏洞,该漏洞源于程序没有充分过滤用户提交的输入。当用户浏览受影响的网站时,其浏览器将执行攻击者提供的任意脚本代码。这可能导致攻击者窃取基于cookie的身份验证并发起其它攻击。WordPress Neuvoo-Jobroll插件2.0版本中存在漏洞,其他版本也可能受到影响。...
WordPress Neuvoo-Jobroll Plugin Cross-Site Scripting Vulnerability
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.Neuvoo-Jobroll is one of the job aggregation plugin. A cross-site scripting vulnerability exists in version 2.0 of...
WordPress Neuvoo-Jobroll 2.0 Cross Site Scripting
Exploit Title: Wordpress plugin neuvoo-jobroll 2.0 Reflected Cross-Site Scripting RXSS Date: 05/11/2015 Author: Mickael Dorigny @ Synetis Vendor or Software Link: http://neuvoo.fr/fr Version: 2.0 Category: Reflected Cross Site Scripting Google dork: Tested on : Wordpress with neuvoo-jobroll 2.0...
neuvoo-jobroll <= 2.0 - Unauthenticated Reflected Cross-Site Scripting (XSS)
The neuvoo-jobroll WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability...