WordPress SimpleFlickr 3.0.3 CSRF / XSS
************************************************************************************** # Title: CSRF / Stored XSS Vulnerability in SimpleFlickr WordPress Plugin # Author: Manideep K # CVE-ID:...
View ArticleWordPress twimp-wp Cross Site Request Forgery / Cross Site Scripting
# Title: CSRF / Stored XSS Vulnerability in twimp-wp Plugin # Author: Manideep K # CVE-ID: CVE-2014-9397 # Plugin Homepage: https://wordpress.org/plugins/twimp-wp/ # Version Affected: (probably lower...
View ArticleWordPress Simplelife 1.2 CSRF / XSS
************************************************************************************** # Title: CSRF / Stored XSS Vulnerability in Simplelife WordPress Plugin # Author: Manideep K # CVE-ID:...
View ArticleWordPress Twitter LiveBlog 1.1.2 CSRF / XSS
# Title: CSRF / Stored XSS Vulnerability in Twitter LiveBlog WordPress Plugin # Author: Manideep K # CVE-ID: CVE-2014-9398 # Plugin Homepage: https://wordpress.org/plugins/twitter-liveblog/ # Version...
View ArticleWordPress TweetScribe 1.1 CSRF / XSS
************************************************************************************** # Title: CSRF / Stored XSS Vulnerability in TweetScribe WordPress Plugin # Author: Manideep K # CVE-ID:...
View ArticleWordPress WP Limit Posts Automatically 0.7 CSRF / XSS
# Title: CSRF / Stored XSS Vulnerability in WP Limit Posts Automatically WordPress Plugin # Author: Manideep K # cve-id: CVE-2014-9401 # Plugin Homepage:...
View ArticleWordPress WP Unique Article Header Image 1.0 CSRF / XSS
************************************************************************************** # Title: CSRF / Stored XSS Vulnerability in WP Unique Article Header Image WordPress Plugin # Author: Manideep K...
View ArticleWordPress Simple Security Plugin XSS vulnerabilities
Advisory ID: HTB23244 Product: Simple Security WordPress Plugin Vendor: MyWebsiteAdvisor Vulnerable Version(s): 1.1.5 and probably prior Tested Version: 1.1.5 Advisory Publication: December 17, 2014...
View ArticleWordPress Church Admin 0.800 Cross Site Scripting
# Exploit Title: WordPress church_admin Stored XSS # Date: 21-04-2015 # Exploit Author: woodspeed # Vendor Homepage: https://wordpress.org/plugins/church-admin/ # Version: 0.800 # OSVDB ID :...
View ArticleWordPress Download Manager Free 2.7.94 / Pro 4 XSS
# WordPress Download Manager Free 2.7.94 & Pro 4 Authenticated Stored XSS # Vendor Homepage: http://www.wpdownloadmanager.com # Software Link: https://wordpress.org/plugins/download-manager #...
View Article