57 matches found
EUVD-2011-4520
Malware in sbrugna...
EUVD-2011-5092
Malware in sbrugna...
EUVD-2011-5091
Malware in sbrugna...
CVE-2015-9457
The pretty-link plugin before 1.6.8 for WordPress has PrliLinksController::listlinks SQL injection via the group parameter...
CVE-2011-4595
Pretty-Link WordPress plugin 1.5.2 has XSS...
CVE-2011-5192
Cross-site scripting XSS vulnerability in pretty-bar.php in Pretty Link Lite plugin before 1.5.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the slug parameter, a different vulnerability than CVE-2011-5191...
WordPress Pretty-Link Cross-Site Scripting Vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. pretty-link is a plugin for adding hyperlinks to web pages. A cross-site scripting vulnerability exists in WordPress Pretty-Link versi...
CVE-2011-4595
Pretty-Link WordPress plugin 1.5.2 has XSS...
Cross site scripting
Pretty-Link WordPress plugin 1.5.2 has XSS...
CVE-2011-4595
Pretty-Link WordPress plugin 1.5.2 has XSS...
CVE-2011-4595
CVE-2011-4595 concerns the Pretty-Link WordPress plugin. The vulnerability is a cross‑site scripting (XSS) flaw in the plugin’s language around the URL parameter of the pretty-bar.php script, allowing an attacker to inject arbitrary HTML/JavaScript into a user’s browser. Affected product/version:...
WordPress pretty-link plugin SQL injection vulnerability
WordPress is the WordPress Foundation's set of blogs using PHP language development guest platform. The platform supports setting up personal blog sites on PHP and MySQL servers. pretty-link is a plugin for adding hyperlinks to web pages. WordPress pretty-link plugin version 1.6.8 before the...
Sql injection
The pretty-link plugin before 1.6.8 for WordPress has PrliLinksController::listlinks SQL injection via the group parameter...
CVE-2015-9457
CVE-2015-9457 : The WordPress "pretty-link" plugin (before 1.6.8) contains a SQL injection in PrliLinksController::list_links that is exploitable via the group parameter. Public sources in connected documents confirm this as an authenticated SQL injection vulnerability affecting Pretty Link plugi...
WordPress Pretty Link Lite Plugin <= 1.6.0 - Cross Site Scripting
Because of this vulnerability, the attackers can inject arbitrary JavaScript or HTML code. Solution Upgrade plugin...
WordPress Pretty Link Lite Plugin <= 1.6.7 - SQL Injection
Because of this vulnerability, remote authenticated users can execute arbitrary SQL commands. Solution Upgrade the plugin...
CVE-2013-1636
Cross-site scripting XSS vulnerability in open-flash-chart.swf in Open Flash Chart aka Open-Flash Chart, as used in the Pretty Link Lite plugin before 1.6.3 for WordPress, JNews comjnews component 8.0.1 for Joomla!, and CiviCRM 3.1.0 through 4.2.9 and 4.3.0 through 4.3.3, allows remote attackers ...
Cross site scripting
Cross-site scripting XSS vulnerability in open-flash-chart.swf in Open Flash Chart aka Open-Flash Chart, as used in the Pretty Link Lite plugin before 1.6.3 for WordPress, JNews comjnews component 8.0.1 for Joomla!, and CiviCRM 3.1.0 through 4.2.9 and 4.3.0 through 4.3.3, allows remote attackers ...
CVE-2013-1636
Removed by vendor...
PT-2014-2484 · Unknown +3 · Open Flash Chart +3
Name of the Vulnerable Software and Affected Versions: Open Flash Chart versions prior to the version used in Pretty Link Lite 1.6.3 Pretty Link Lite plugin versions prior to 1.6.3 JNews com jnews component version 8.0.1 CiviCRM versions 3.1.0 through 4.2.9 and 4.3.0 through 4.3.3 Description: A...