WordPress S3 Video <=0.983 - Cross-Site Scripting

WordPress S3 Video and before contains a reflected cross-site scripting vulnerability which allows an attacker to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials...

EUVD-2013-7057

Malware in sbrugna...

EUVD-2016-1092

Malware in sbrugna...

Wordpress s3-video plugin cross-site scripting vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports in PHP and MySQL servers to set up a personal blog site. s3-video is one of the video plugin. A cross-site scripting vulnerability exists in version 0.983 of the...

CVE-2016-1000148

Reflected XSS in wordpress plugin s3-video v0.983...

CVE-2016-1000148

Reflected XSS in wordpress plugin s3-video v0.983...

CVE-2016-1000148

Reflected XSS in wordpress plugin s3-video v0.983...

CVE-2016-1000148

Summary (CVE-2016-1000148) : A reflected Cross-Site Scripting (XSS) vulnerability exists in the WordPress S3 Video plugin for versions = 0.984. PoCs and attacker guidance are present in connected references.

WordPress S3 Video Plugin <= 0.983 - Reflected Cross Site Scripting

Because of this vulnerability, the attackers can inject arbitrary JavaScript or HTML code. Solution Update plugin...

S3 Video Plugin <= 0.983 - Unauthenticated Reflected Cross-Site Scripting (XSS)

The s3-video WordPress plugin was affected by an Unauthenticated Reflected Cross-Site Scripting XSS security vulnerability. http://www.example.com/wp-content/plugins/s3-video/views/video-management/previewvideo.php?media="alert1;"...

WordPress S3 Video Remote Shell Upload

Exploit Title : Wordpress S3 Video Plugin file upload Author : Manish Kishan Tanwar AKA error1046 Vendor Link : http://plugins.svn.wordpress.org/s3-video/tags/0.91/ Affected Version: below version 0.91 Date : 9/12/2015 Love to : zero cool,Team indishell,Mannu,Viki,Hardeep Singh,Jagriti,Kishan Sin...

WordPress S3 Video Remote Shell Upload Vulnerability

WordPress S3 Video plugin suffers from a remote shell upload vulnerability. Versions prior to 0.91 are affected. Exploit Title : Wordpress S3 Video Plugin file upload Author : Manish Kishan Tanwar AKA error1046 Vendor Link : http://plugins.svn.wordpress.org/s3-video/tags/0.91/ Affected Version:...

S3 Video 0.982 - preview_video.php base Parameter XSS

The s3-video WordPress plugin was affected by a previewvideo.php base Parameter XSS security vulnerability...

S3 Video <= 0.97 - VideoJS Cross Site Scripting

The s3-video WordPress plugin was affected by a VideoJS Cross Site Scripting security vulnerability...

CVE-2013-7279

Cross-site scripting XSS vulnerability in views/video-management/previewvideo.php in the S3 Video plugin before 0.983 for WordPress allows remote attackers to inject arbitrary web script or HTML via the base parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in views/video-management/previewvideo.php in the S3 Video plugin before 0.983 for WordPress allows remote attackers to inject arbitrary web script or HTML via the base parameter...

CVE-2013-7279

Summary: CVE-2013-7279 is an XSS flaw in the WordPress S3 Video plugin (pre-0.983) where the base parameter of preview_video.php is not sanitized, allowing remote attackers to inject arbitrary script/HTML. Affected software: S3 Video WordPress plugin before 0.983. The vulnerability is triggered v...

CVE-2013-7279

Cross-site scripting XSS vulnerability in views/video-management/previewvideo.php in the S3 Video plugin before 0.983 for WordPress allows remote attackers to inject arbitrary web script or HTML via the base parameter...

Vulnerabilities in multiple plugins for WordPress with VideoJS

Hello 3APA3A! These are Cross-Site Scripting vulnerabilities in multiple plugins for WordPress with VideoJS. Earlier I've wrote about vulnerabilities in VideoJS http://seclists.org/fulldisclosure/2013/May/21. This is popular video and audio player, which is used at hundreds thousands of web sites...

WordPress Video JS Cross Site Scripting

Hello list! These are Cross-Site Scripting vulnerabilities in multiple plugins for WordPress with VideoJS. Earlier I've wrote about vulnerabilities in VideoJS http://seclists.org/fulldisclosure/2013/May/21. This is popular video and audio player, which is used at hundreds thousands of web sites a...