Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpvulndbYoussef bencharhiWPVDB-ID:4200832F-35A1-4047-B505-5339C8C2E549
HistoryJan 25, 2015 - 12:00 a.m.

WP SlimStat <= 3.9.2 - Stored Cross-Site Scripting (XSS)

2015-01-2500:00:00
youssef bencharhi
wpscan.com
10

EPSS

0.002

Percentile

57.3%

JSON

WP-SlimStat Plugin for WordPress is vulnerable to Stored Cross-Site Scripting An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials of the web site administrator and launch other attacks. This issue affects WP-SlimStat Plugin 3.9.2; other Old versions may also be vulnerable. Sample Payload: http://www.example.com/wordpress/?cat=1"> http://www.example.com/wordpress/wp-admin/admin.php?page=wp-slim-view-5

Related

nvd 1
wpvulndb 1
prion 1
cvelist 1
patchstack 1
cve 1
nvd
nvd
CVE-2015-1204
2015-01-21 15:28:39
wpvulndb
wpvulndb
WP SlimStat <= 3.9.1 - Cross-Site Scripting (XSS)
2015-01-06 10:23:23
prion
prion
Cross site scripting
2015-01-21 15:28:00
cvelist
cvelist
CVE-2015-1204
2015-01-21 15:00:00
patchstack
patchstack
WordPress Slimstat Plugin <= 3.9.1 - XSS
2015-01-21 00:00:00
cve
cve
CVE-2015-1204
2015-01-21 15:28:39

EPSS

0.002

Percentile

57.3%

JSON
Related for WPVDB-ID:4200832F-35A1-4047-B505-5339C8C2E549
nvd1wpvulndb1prion1cvelist1patchstack1cve1