2 matches found
CVE-2016-10899
The CVE-2016-10899 entry concerns the WordPress Total Security plugin prior to version 3.4.1, described as a settings-change vulnerability. Multiple connected sources (Red Hat, NVD, CNVD, WPVulnDB, CVE listing) converge on a vulnerability in the plugin’s settings handling that could allow unautho...
CVE-2016-10898
The CVE-2016-10898 entry corresponds to a Cross-Site Scripting (XSS) vulnerability in the WordPress plugin total-security. Multiple connected sources confirm the affected product is the Total Security WordPress plugin and indicate the issue exists in versions before 3.4.1. The Red Hat, CNVD, CVE ...