5 matches found
EUVD-2017-1431
Malware in sbrugna...
Themify Portfolio Post < 1.2.2 - Contributor+ Stored XSS
The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. themifyportfolioposts imageh='100"...
CVE-2015-6523
Cross-site request forgery CSRF vulnerability in the Portfolio plugin before 1.05 for WordPress allows remote attackers to hijack the authentication of administrators for requests that have unspecified impact via a request to the instagram-portfolio page in wp-admin/options-general.php...
Wordpress Category List Portfolio Page 1.3 File Upload
File upload vulnerability in Wordpress Category List Portfolio Page plugin Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...
ClickTrackerASP SQL Injection
?---------------------بسم الله الرحمن الرحيم----------------- وجعلنا من بين ايديهم سدا ومن خلفهم سدا فاغشيناهم فهم لا يبصرون ?---------------------صدق الله العظيم----------------- Tybe: sitedetails.asp siteid REM0TE SQL !NJEC7!0N Vulnerability$ ? Vendor: www.pensacolawebdesigns.com ?download...