WordPress AJAX Random Post <=2.00 - Cross-Site Scripting

WordPress AJAX Random Post 2.00 is vulnerable to reflected cross-site scripting. id: CVE-2016-1000127 info: name: WordPress AJAX Random Post =2.00 - Cross-Site Scripting author: daffainfo severity: medium description: WordPress AJAX Random Post 2.00 is vulnerable to reflected cross-site scripting...

EUVD-2016-1071

Malware in sbrugna...

Wordpress ajax-random-post plugin cross-site scripting vulnerability

WordPress is the WordPress Software Foundation a set of blogging platform developed using the PHP language , the platform supports in PHP and MySQL servers to set up a personal blog site . xx is one of the use of Ajax to get the posts of the plugin . A cross-site scripting vulnerability exists in...

CVE-2016-1000127

Reflected XSS in wordpress plugin ajax-random-post v2.00...

CVE-2016-1000127

Reflected XSS in wordpress plugin ajax-random-post v2.00...

CVE-2016-1000127

Reflected XSS in wordpress plugin ajax-random-post v2.00...

CVE-2016-1000127

The CVE-2016-1000127 entry concerns the WordPress plugin ajax-random-post, affected at version 2.00 (≤2.00). The connected nuclei template confirms a reflected Cross-Site Scripting vulnerability in the plugin’s handling of the AJAX endpoint, enabling injection of arbitrary JavaScript executed in ...

WordPress Ajax Random Post Plugin <= 2.00 - Cross Site Scripting (XSS)

Because of this vulnerability, the attackers can inject arbitrary web script or HTML. Solution Update the plugin...

WordPress Ajax Random Post Plugin <= 2.00 - Cross Site Scripting (XSS)

Because of this vulnerability, the attackers can inject arbitrary web script or HTML. Solution Update the plugin...