EUVD-2014-8200

Malware in sbrugna...

CVE-2014-8363

SQL injection vulnerability in sshandler.php in the WordPress Spreadsheet wpSS plugin 0.62 for WordPress allows remote attackers to execute arbitrary SQL commands via the ssid parameter...

CVE-2014-8364

Cross-site scripting XSS vulnerability in sshandler.php in the WordPress Spreadsheet wpSS plugin 0.62 for WordPress allows remote attackers to inject arbitrary web script or HTML via the ssid parameter...

CVE-2014-8363

SQL injection vulnerability in sshandler.php in the WordPress Spreadsheet wpSS plugin 0.62 for WordPress allows remote attackers to execute arbitrary SQL commands via the ssid parameter...

CVE-2014-8363

CVE-2014-8363 affects the WordPress Spreadsheet plugin (wpSS) for WordPress, specifically version 0.62 and potentially earlier. The vulnerability is an SQL injection in ss_handler.php via the ss_id parameter, allowing remote attackers to execute arbitrary SQL commands. Multiple sources (NVD, RH, ...

CVE-2014-8364

The CVE-2014-8364 entry maps to a Cross-site Scripting (XSS) vulnerability in the WordPress Spreadsheet plugin (wpSS) for WordPress, specifically in ss_handler.php (plugin version 0.62) exploitable via the ss_id parameter to inject script/HTML. This affects wpSS 0.62 on WordPress and is reported ...

WordPress WPSS 0.62 Cross Site Scripting

|||||||||||||||||||||||||||||||||||||||||||||||||| |-------------------------------------------------------------------------| | Exploit Title: Wordpress WPSS v 0.62 Plugin Cross site scripting | | Exploit Author: Ashiyane Digital Security Team | | Date : 2014-08-05 | | Vendor Homepage :...