WordPress post highlights plugin cross-site scripting vulnerability

WordPress is the WordPress Software Foundation of a set of blogging platform developed using the PHP language , the platform supports PHP and MySQL server set up a personal blog site . post highlights plugin is one of the text effects plugin . A cross-site scripting vulnerability exists in...

CVE-2014-8087

Cross-site scripting XSS vulnerability in the post highlights plugin before 2.6.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the txt parameter in a headline action to ajax/phsave.php...

CVE-2014-8087

CVE-2014-8087 corresponds to a stored XSS in the WordPress Post Highlights plugin (versions before 2.6.1). The vulnerability allows an attacker to inject arbitrary script/HTML via the txt parameter used in a headline action to ajax/ph_save.php. Public records consistently cite the affected compon...

CVE-2014-8087

Cross-site scripting XSS vulnerability in the post highlights plugin before 2.6.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the txt parameter in a headline action to ajax/phsave.php...

WordPress Plugin post highlights 2.2 - SQL Injection

WordPress Plugin post highlights 2.2 - SQL Injection Exploit Title: WordPress post highlights plugin posts WHERE posttype='attachment' AND postparent='$id'";...

WordPress Plugin post highlights 2.2 - SQL Injection

Exploit Title: WordPress post highlights plugin posts WHERE posttype='attachment' AND postparent='$id'";...

WordPress post highlights plugin <= 2.2 SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: WordPress post highlights plugin posts WHERE posttype='attachment' AND postparent='$id'"; 0day.today 2018-02-27...