EUVD-2012-2565

Malware in sbrugna...

SimpleMail 1.0.6 - Stored XSS

The wp-simplemail WordPress plugin was affected by a Stored XSS security vulnerability...

wordpress simplemail plugin 1.0.6 - Stored XSS

No description provided by source. !/usr/bin/python ''' Author: loneferret of Offensive Security Product: SimpleMail Version: 1.0.6 free version Vendor Site: http://codecanyon.net/item/wp-simplemail/1130008?ref=tinsley Software Download: http://wordpress.org/extend/plugins/wp-simplemail/ Timeline...

CVE-2012-2579

Multiple cross-site scripting XSS vulnerabilities in the WP SimpleMail plugin 1.0.6 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 To, 2 From, 3 Date, or 4 Subject field of an email...

CVE-2012-2579

CVE-2012-2579 concerns the WordPress plugin WP SimpleMail (version 1.0.6) which is affected by stored XSS via the email fields To, From, Date and Subject. The vulnerability arises from insufficient input sanitization when these fields are displayed, enabling an attacker to inject arbitrary script...

WordPress SimpleMail Plugin Email fields script insertion vulnerabilities and fixes-vulnerability warning-the black bar safety net

WordPress is a PHP language and MySQL database development Blog（blog, blogengine, users can support PHP and MySQL database server on build your own Blog. SimpleMail plugin for WordPress 1.0.6 and other versions in the realization on the presence of a plurality of vulnerabilities, through the e-ma...

WordPress SimpleMail Plugin Email字段脚本插入漏洞

CVE ID: CVE-2012-2579 WordPress是一种使用PHP语言和MySQL数据库开发的Blog（博客、网志引擎，用户可以在支持PHP和MySQL数据库的服务器上建立自己的Blog。 SimpleMail plugin for WordPress 1.0.6及其他版本在实现上存在多个漏洞，通过电子邮件的字段"To"、"From"、"Date"、"Subject"传递的输入没有正确过滤即用于显示电子邮件，可被恶意利用执行脚本插入攻击，查看后会在受影响站点的用户浏览器中执行 0 WordPress SimpleMail Plugin 1.x 厂商补丁： WordPress...

WordPress Plugin simplemail 1.0.6 - Persistent Cross-Site Scripting

!/usr/bin/python ''' Author: loneferret of Offensive Security Product: SimpleMail Version: 1.0.6 free version Vendor Site: http://codecanyon.net/item/wp-simplemail/1130008?ref=tinsley Software Download: http://wordpress.org/extend/plugins/wp-simplemail/ Timeline: 29 May 2012: Vulnerability report...

WordPress Plugin simplemail 1.0.6 - Persistent Cross-Site Scripting

WordPress Plugin simplemail 1.0.6 - Persistent Cross-Site Scripting !/usr/bin/python ''' Author: loneferret of Offensive Security Product: SimpleMail Version: 1.0.6 free version Vendor Site: http://codecanyon.net/item/wp-simplemail/1130008?ref=tinsley Software Download:...

WordPress SimpleMail Plugin 1.0.6 - Stored XSS

WordPress SimpleMail plugin is prone to a stored XSS vulnerability. It fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker can steal cookie-based authentication...