Lucene search
K

599 matches found

Cvelist
Cvelist
added 2012/09/23 5:0 p.m.24 views

CVE-2011-5191

Cross-site scripting XSS vulnerability in pretty-bar.php in Pretty Link Lite plugin before 1.5.4 for WordPress allows remote attackers to inject arbitrary web script or HTML via the slug parameter, a different vulnerability than CVE-2011-5192...

5.7AI score0.01668EPSS
Exploits1References2
CVE
CVE
added 2012/09/23 5:0 p.m.39 views

CVE-2011-5191

CVE-2011-5191 describes an XSS vulnerability in the Pretty Link Lite WordPress plugin, specifically in the pretty-bar.php code path. The flaw allows remote attackers to inject arbitrary web script or HTML via the slug parameter in versions prior to 1.5.4. This is a distinct vulnerability from CVE...

4.3CVSS5.9AI score0.01668EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2012/09/23 5:0 p.m.30 views

CVE-2011-5192

Cross-site scripting XSS vulnerability in pretty-bar.php in Pretty Link Lite plugin before 1.5.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the slug parameter, a different vulnerability than CVE-2011-5191...

5.7AI score0.02058EPSS
Exploits1References4
CVE
CVE
added 2012/09/23 5:0 p.m.42 views

CVE-2011-5192

CVE-2011-5192 describes a Cross-site scripting (XSS) vulnerability in the Pretty Link Lite WordPress plugin. Affected component: pretty-bar.php in Pretty Link Lite. Vulnerable until version 1.5.5 (i.e., "before 1.5.6"). Root cause: XSS via the slug parameter, enabling an attacker to inject arbitr...

4.3CVSS5.9AI score0.02058EPSS
Exploits1References4Affected Software1
Patchstack
Patchstack
added 2012/09/23 12:0 a.m.22 views

WordPress Pretty Link Lite Plugin <= 1.5.5 - XSS

Because of this vulnerability in pretty-bar.php, the attackers can inject arbitrary web script or HTML via the "slug" parameter. Solution Update the plugin...

4.3CVSS2.7AI score0.02058EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2012/09/23 12:0 a.m.20 views

WordPress Pretty Link Lite Plugin <= 1.5.3 - XSS

Because of this vulnerability in pretty-bar.php, the attackers can inject arbitrary web script or HTML via the "slug" parameter. Solution Update the plugin...

4.3CVSS2.7AI score0.01668EPSS
Exploits1References1Affected Software1
OpenVAS
OpenVAS
added 2012/05/17 12:0 a.m.13 views

WordPress Pretty Link Lite Plugin SQLi / XSS Vulnerabilities

The WordPress plugin SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wordpress:wordpress"; ifdescription...

7.2AI score
Exploits0References6
Patchstack
Patchstack
added 2012/05/15 12:0 a.m.8 views

WordPress Pretty Link Lite Plugin 1.5.2 - SQL Injection and Cross Site Scripting Vulnerabilities

Pretty Link Lite plugin is prone to multiple cross-site scripting and SQL-injection vulnerabilities because of failure to properly clean up user-supplied input. It allows an attacker to steal cookie-based authentication credentials, access or modify data, compromise the application or exploit...

1.9AI score
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2012/05/15 12:0 a.m.14 views

WordPress Plugin Pretty Link Lite 1.5.2 - SQL Injection Cross-Site Scripting

WordPress Plugin Pretty Link Lite 1.5.2 - SQL Injection Cross-Site Scripting source: https://www.securityfocus.com/bid/53531/info Pretty Link Lite plugin for WordPress is prone to multiple cross-site scripting and SQL-injection vulnerabilities because it fails to properly sanitize user-supplied...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2012/05/15 12:0 a.m.30 views

WordPress Pretty Link Lite 1.5.2 Cross Site Scripting

Hi We have used our tool, THAPS, to identify vulnerabilities in this WordPress plugin. We have confirmed at least one of the reported vulnerabilities and created a working exploit located below. Attached is one or more log files containing the output of our tool, identifying the location of the...

7.4AI score
Exploits0
WPVulnDB
WPVulnDB
added 2012/05/15 12:0 a.m.20 views

Pretty Link Lite <= 1.5.3 - Cross-Site Scripting (XSS)

The Pretty Links – Link Management, Branding, Tracking & Sharing Plugin WordPress plugin was affected by a Cross-Site Scripting XSS security vulnerability...

4.3CVSS1.3AI score0.02407EPSS
Exploits1References3Affected Software1
Exploit DB
Exploit DB
added 2012/05/15 12:0 a.m.34 views

WordPress Plugin Pretty Link Lite 1.5.2 - SQL Injection / Cross-Site Scripting

source: https://www.securityfocus.com/bid/53531/info Pretty Link Lite plugin for WordPress is prone to multiple cross-site scripting and SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input. Successful exploits will allow an attacker to steal cookie-based...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2011/12/12 12:0 a.m.43 views

Wordpress pretty-link.1.5.2 plugin Cross-Site Scripting Vulnerabilities

a bug in Wordpress pretty-link plugin that allows to us to occur a Cross-Site Scripting on a Remote machin. ISlamic Republic Of IRan Security Team http://irist.ir/forum/ Wordpress pretty-link.1.5.2 plugin Cross-Site Scripting Vulnerabilities...

0.5AI score
Exploits0
seebug.org
seebug.org
added 2011/12/08 12:0 a.m.20 views

WordPress Pretty Link 1.5.2 Cross Site Scripting

No description provided by source. ISlamic Republic Of IRan Security Team http://irist.ir/forum/ Wordpress pretty-link.1.5.2 plugin Cross-Site Scripting Vulnerabilities Download......: http://wordpress.org/extend/plugins/pretty-link/...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2011/12/07 12:0 a.m.8 views

WordPress Pretty Link Plugin 'pretty-bar.php' Cross Site Scripting Vulnerability

The Pretty Link plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user- supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This...

7.7AI score
Exploits0References2
Packet Storm
Packet Storm
added 2011/12/06 12:0 a.m.27 views

WordPress Pretty Link 1.5.2 Cross Site Scripting

ISlamic Republic Of IRan Security Team http://irist.ir/forum/ Wordpress pretty-link.1.5.2 plugin Cross-Site Scripting Vulnerabilities Download......: http://wordpress.org/extend/plugins/pretty-link/ Exploit.......: http://www.site.com/path/wp-content/plugins/pretty-link/pretty-bar.php?url=xss...

7.4AI score
Exploits0
Patchstack
Patchstack
added 2011/12/06 12:0 a.m.17 views

WordPress Pretty Link Plugin 1.5.2 - Cross Site Scripting

WordPressPretty Link plugin's "pretty-bar.php" parameter is prone to a cross-site scripting vulnerability. It fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker can...

6.1CVSS2.8AI score0.02407EPSS
Exploits1References1Affected Software1
exploitpack
exploitpack
added 2011/12/06 12:0 a.m.13 views

WordPress Plugin Pretty Link 1.5.2 - pretty-bar.php Cross-Site Scripting

WordPress Plugin Pretty Link 1.5.2 - pretty-bar.php Cross-Site Scripting source: https://www.securityfocus.com/bid/50921/info The Pretty Link plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage...

6.7AI score
Exploits0
securityvulns
securityvulns
added 2011/10/24 12:0 a.m.171 views

Multiple vulnerabilities in Pretty Link WordPress Plugin

Vulnerability ID: HTB23049 Reference: https://www.htbridge.ch/advisory/multiplevulnerabilitiesinprettylinkwordpressplugin.html Product: Pretty Link WordPress Plugin Vendor: Caseproof http://blairwilliams.com/ Vulnerable Version: 1.4.56 and probably prior Tested Version: 1.4.56 Vendor Notification...

0.2AI score
Exploits0
Patchstack
Patchstack
added 2011/10/13 12:0 a.m.8 views

WordPress Pretty Link Plugin 1.4.56 - Multiple Cross Site Scripting Vulnerabilities

WordPress Pretty Link plugin is prone to multiple cross-site scripting vulnerabilities that fail to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker can steal cookie-based...

2.3AI score
Exploits0References1Affected Software1
Rows per page
Query Builder