5 matches found
EUVD-2012-0289
Malware in sbrugna...
CVE-2012-0253
Multiple cross-site scripting XSS vulnerabilities in Demand Media Pluck SiteLife before 5.0.13 allow remote attackers to inject arbitrary web script or HTML via 1 the jsonRequest parameter to Direct/Process, the 2 r or 3 cb parameter to Direct/jsonp.htm, or 4 the cb parameter to sys/jsonp.app/.ht...
CVE-2012-0253
Pluck SiteLife (Demand Media) prior to version 5.0.13 contains multiple XSS vulnerabilities exploitable via parameters jsonRequest, r, cb, and sys/jsonp.app/.htm, enabling arbitrary script/HTML injection. The issue affects Pluck SiteLife software and could lead to information leakage, privilege e...
CVE-2012-0253
Multiple cross-site scripting XSS vulnerabilities in Demand Media Pluck SiteLife before 5.0.13 allow remote attackers to inject arbitrary web script or HTML via 1 the jsonRequest parameter to Direct/Process, the 2 r or 3 cb parameter to Direct/jsonp.htm, or 4 the cb parameter to sys/jsonp.app/.ht...
Pluck SiteLife software multiple XSS vulnerabilities
Overview Pluck SiteLife software contains multiple XSS vulnerabilities. Description According to DemandMedia's website Pluck SiteLife software is an integrated community platform architected for brands. Pluck SiteLife software contains multiple cross site scripting XSS vulnerabilities. CWE-79:...