EUVD-2015-9248

Malware in sbrugna...

EUVD-2015-9247

Malware in sbrugna...

CVE-2015-9408

The xpinner-lite plugin through 2.2 for WordPress has wp-admin/options-general.php CSRF with resultant XSS...

CVE-2015-9407

The xpinner-lite plugin through 2.2 for WordPress has xpinner-lite.php XSS...

CVE-2015-9407

The xpinner-lite plugin through 2.2 for WordPress has xpinner-lite.php XSS...

CVE-2015-9408

The xpinner-lite plugin through 2.2 for WordPress has wp-admin/options-general.php CSRF with resultant XSS...

Cross site scripting

The xpinner-lite plugin through 2.2 for WordPress has xpinner-lite.php XSS...

CVE-2015-9408

The xpinner-lite plugin through 2.2 for WordPress has wp-admin/options-general.php CSRF with resultant XSS...

CVE-2015-9408

CVE-2015-9408 affects the WordPress xpinner-lite plugin up to version 2.2. The vulnerability is a CSRF on wp-admin/options-general.php that results in a Cross-Site Scripting (XSS) condition. Documentation in connected sources confirms the affected software/component but does not provide exploit d...

CVE-2015-9407

The xpinner-lite plugin through 2.2 for WordPress has xpinner-lite.php XSS...

CVE-2015-9407

CVE-2015-9407 affects the xpinner-lite WordPress plugin (up to version 2.2). The flaw is an XSS in xpinner-lite.php. The connected sources confirm the vulnerability vector as XSS but provide no exploit details or remediation in the cited docs.

WordPress xPinner Lite Plugin <= 2.2 - Multiple Vulnerabilities

This plugin is prone to cross site scripting and cross site request forgery vulnerabilities. Solution Update the plugin...

WordPress xPinner Lite 2.2 Cross Site Request Forgery / Cross Site Scripting

Exploit Title: Wordpress xPinner Lite CSRF/XSS Exploit Author: Ashiyane Digital security Team Vendor Homepage: https://wordpress.org/plugins/xpinner-lite Software Link: https://downloads.wordpress.org/plugin/xpinner-lite.zip Version: 2.2 Tested on: windows 7 /FireFox Date: 2015-09-14 Exploit :...