20 matches found
EUVD-2011-5206
Malware in sbrugna...
CVE-2011-5307
Cross-site scripting XSS vulnerability in index.php in the PhotoSmash plugin 1.0.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the action parameter...
WordPress PhotoSmash plugin cross-site scripting vulnerability
WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.PhotoSmash plugin is a plugin for adding photo albums. The WordPress PhotoSmash plugin has a cross-site scripting lea...
CVE-2011-5307
Cross-site scripting XSS vulnerability in index.php in the PhotoSmash plugin 1.0.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the action parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in index.php in the PhotoSmash plugin 1.0.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the action parameter...
CVE-2011-5307
CVE-2011-5307 is a publicly known XSS vulnerability in the WordPress PhotoSmash plugin version 1.0.1, exposed via index.php where the action parameter can be exploited to inject arbitrary web scripts/HTML. The NVD entry lists a MEDIUM severity (CVSS2: AV:N/AC:M/Au:N/I:P/C:N, base 4.3) with no con...
CVE-2011-5307
Cross-site scripting XSS vulnerability in index.php in the PhotoSmash plugin 1.0.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the action parameter...
WordPress PhotoSmash Plugin <= 1.0.1 - XSS
Because of this vulnerability in index.php, the attackers can inject arbitrary web script or HTML via the "action" parameter. Solution Update the plugin...
WordPress PhotoSmash Galleries Plugin - Arbitrary File Upload
PhotoSmash Galleries plugin is prone to an arbitrary file upload vulnerability via "bwbps-uploader.php". It allows an attacker to upload arbitrary files to the affected computer. Solution Upgrade the plugin...
WordPress Plugin PhotoSmash Galleries - bwbps-uploader.php Arbitrary File Upload
WordPress Plugin PhotoSmash Galleries - bwbps-uploader.php Arbitrary File Upload source: https://www.securityfocus.com/bid/64173/info The PhotoSmash Galleries plugin for WordPress is prone to a vulnerability that lets attackers upload arbitrary files. The issue occurs because it fails to properly...
WordPress Photosmash Shell Upload
Exploit Title: Wordpress photosmash plugins Remote File Upload Vulnerability Author: Ashiyane Digital Security Team Date: 12/08/2013 Vendor Homepage: http://smashly.net/ Software Link : http://downloads.wordpress.org/plugin/photosmash-galleries.1.0.7.zip Google dork:...
WordPress Plugin PhotoSmash Galleries - 'bwbps-uploader.php' Arbitrary File Upload
source: https://www.securityfocus.com/bid/64173/info The PhotoSmash Galleries plugin for WordPress is prone to a vulnerability that lets attackers upload arbitrary files. The issue occurs because it fails to properly validate file extensions before uploading them. An attacker may leverage this...
PhotoSmash Galleries WordPress Plugin 'action' Parameter XSS Vulnerability
WordPress PhotoSmash Galleries Plugin is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...
HTB22867: XSS in PhotoSmash wordpress plugin
Vulnerability ID: HTB22867 Reference: http://www.htbridge.ch/advisory/xssinphotosmashwordpressplugin.html Product: PhotoSmash wordpress plugin Vendor: Byron Bennett http://smashly.net/ Vulnerable Version: 1.0.1 Vendor Notification: 22 February 2011 Vulnerability Type: XSS Cross Site Scripting...
WordPress PhotoSmash Galleries Plugin 1.0.x - Cross-Site Scripting
PhotoSmash Galleries plugin's "action" parameter is prone to a cross-site scripting vulnerability. It fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker can steal...
WordPress Plugin PhotoSmash Galleries 1.0.x - action Cross-Site Scripting
WordPress Plugin PhotoSmash Galleries 1.0.x - action Cross-Site Scripting source: https://www.securityfocus.com/bid/46782/info The PhotoSmash Galleries WordPress Plugin is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may...
PhotoSmash 1.0.1 Cross Site Scripting
Vulnerability ID: HTB22867 Reference: http://www.htbridge.ch/advisory/xssinphotosmashwordpressplugin.html Product: PhotoSmash wordpress plugin Vendor: Byron Bennett http://smashly.net/ Vulnerable Version: 1.0.1 Vendor Notification: 22 February 2011 Vulnerability Type: XSS Cross Site Scripting...
WordPress Plugin PhotoSmash Galleries 1.0.x - 'action' Cross-Site Scripting
source: https://www.securityfocus.com/bid/46782/info The PhotoSmash Galleries WordPress Plugin is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...
WordPress PhotoSmash 1.0.2 Cross Site Scripting
------------------------------------------------------------------------ Software................WordPress PhotoSmash 1.0.2 Vulnerability...........Reflected Cross-site Scripting Download................http://smashly.net/photosmash-galleries/ Release Date............2/23/2011 Tested...
Cross-site Scripting (XSS) Vulnerability in PhotoSmash
High-Tech Bridge SA Security Research Lab has discovered vulnerability in PhotoSmash WordPress plugin which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in PhotoSmash The vulnerability exists due to input sanitation error in the "action"...