2 matches found
CVE-2012-4263
The CVE-2012-4263/XSS issue affects the WordPress plugin Better WP Security (better_wp_security) prior to version 3.2.5, where an XSS can be triggered by entering arbitrary script/HTML via the HTTP_USER_AGENT header in inc/admin/content.php. A related vulnerability, CVE-2012-4264, involves multip...
CVE-2012-4264
The CVE-2012-4264 entry applies to the WordPress plugin Better WP Security (better_wp_security) prior to version 3.2.5. The vulnerability arises from improper sanitization of data in server variables (and related vectors), allowing remote attackers to inject arbitrary web script or HTML (XSS). Af...