3 matches found
EUVD-2013-3464
Malware in sbrugna...
CVE-2013-3529
Multiple cross-site scripting XSS vulnerabilities in user/obits.php in the WP FuneralPress plugin before 1.1.7 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 message, 2 photo-message, or 3 youtube-message parameter...
CVE-2013-3529
The CVE concerns the WP FuneralPress WordPress plugin, affecting version(s) before 1.1.7. The vulnerability is a Cross-Site Scripting (XSS) in the file path user/obits.php, where the parameters (message, photo-message, youtube-message) can be exploited to inject arbitrary script/HTML. Root cause:...