2 matches found
CVE-2011-5194
CVE-2011-5194 is an XSS vulnerability in the WordPress Whois Search plugin (vendors/samswhois/samswhois.inc.php) that affects versions before 1.4.2.3. The flaw allows remote attackers to inject arbitrary scripts via the domain parameter to index.php. No exploitation details are provided in the co...
CVE-2011-5193
The CVE-2011-5193 entry concerns the WordPress plugin “Whois Search” (plugin path: vendors/samswhois/samswhois.inc.php). The vulnerability is an XSS in the index.php domain parameter when the WHOIS widget is enabled, exploitable in plugin versions around 1.4.2.3 (per CVE-2011-5193). Connected dat...