7 matches found
EUVD-2013-2653
Malware in sbrugna...
CVE-2013-2714
Cross-site Scripting XSS in WordPress podPress Plugin 8.8.10.13 could allow remote attackers to inject arbitrary web script or html via the 'playerID' parameter...
Cross site scripting
Cross-site Scripting XSS in WordPress podPress Plugin 8.8.10.13 could allow remote attackers to inject arbitrary web script or html via the 'playerID' parameter...
CVE-2013-2714
Cross-site Scripting XSS in WordPress podPress Plugin 8.8.10.13 could allow remote attackers to inject arbitrary web script or html via the 'playerID' parameter...
CVE-2013-2714
CVE-2013-2714 concerns a cross-site scripting (XSS) vulnerability in the WordPress podPress plugin (version 8.8.10.13 and prior). The flaw resides in the SWF-based player at /wp-content/plugins/podpress/players/1pixelout/1pixelout_player.swf, where the parameter playerID is not properly sanitized...
WordPress podPress Plugin XSS in SWF
Exploit Title: WordPress podPress Plugin XSS in SWF Release Date: 28/03/13 Author: hip Insight-Labs Contact: [email protected] | Website: http://insight-labs.org Software Link: http://downloads.wordpress.org/plugin/podpress.8.8.10.17.zip Tested on: XPsp3 Affected version: 8.8.10.13 before Goog...
WordPress Plugin podPress - playerID Cross-Site Scripting
WordPress Plugin podPress - playerID Cross-Site Scripting source: https://www.securityfocus.com/bid/58421/info The podPress plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to...