13 matches found
CVE-2016-10965
The real3d-flipbook-lite plugin 1.0 for WordPress has deleteBook=../ directory traversal for file deletion...
EUVD-2016-1956
Malware in sbrugna...
EUVD-2016-1958
Malware in sbrugna...
CVE-2016-10967
The real3d-flipbook-lite plugin 1.0 for WordPress has XSS via the wp-content/plugins/real3d-flipbook/includes/flipbooks.php bookId parameter...
WordPress Real3D Flipbook PDF Viewer Lite plugin <= 3.71 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Manab Jyoti Dowarah Patchstack Alliance in WordPress Plugin Real 3D FlipBook versions = 3.71...
CVE-2016-10967
The real3d-flipbook-lite plugin 1.0 for WordPress has XSS via the wp-content/plugins/real3d-flipbook/includes/flipbooks.php bookId parameter...
CVE-2016-10966
The real3d-flipbook-lite plugin 1.0 for WordPress has bookName=../ directory traversal for file upload...
CVE-2016-10965
The real3d-flipbook-lite plugin 1.0 for WordPress has deleteBook=../ directory traversal for file deletion...
CVE-2016-10965
The real3d-flipbook-lite plugin 1.0 for WordPress has deleteBook=../ directory traversal for file deletion...
CVE-2016-10967
The real3d-flipbook-lite plugin 1.0 for WordPress has XSS via the wp-content/plugins/real3d-flipbook/includes/flipbooks.php bookId parameter...
CVE-2016-10967
The CVE-2016-10967 entry concerns the WordPress plugin real3d-flipbook-lite (v1.0) . The vulnerability is a Cross-Site Scripting (XSS) flaw exploitable via the parameter bookId in the file path wp-content/plugins/real3d-flipbook/includes/flipbooks.php . Root cause is inadequate input handling/san...
CVE-2016-10966
The CVE-2016-10966 entry concerns the WordPress plugin real3d-flipbook-lite version 1.0. The vulnerability is a directory traversal in the file upload process via bookName=../, enabling traversal beyond the intended directory. Details across connected documents confirm the affected product and th...
CVE-2016-10965
The CVE-2016-10965 entry concerns the real3d-flipbook-lite plugin for WordPress (version 1.0). The underlying issue is a deleteBook=../ directory traversal vulnerability that enables traversal for file deletion. Connected sources confirm the affected software and the root cause (directory travers...