22 matches found
[iBliss Security Advisory] Cross-Site Scripting (XSS) vulnerability in Design-approval-system wordpress plugin
Design-Approval-System Wordpress plugin XSS vendor product description A system to streamline the process of getting designs, photos, documents, videos or music approved by clients quickly. Bug Description The walkthrouth web page does not validate the step parameter leading to a Cross-site...
WordPress Design Approval System Plugin <= 3.6 - XSS
Because of this vulnerability in admin/walkthrough/walkthrough.php, the attackers can inject arbitrary web script or HTML via the "step" parameter. Solution Update the plugin...