oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Multiple vulnerabilities affecting four WordPress Plugins & one Theme

From: Summer of Pwnage <lists () securify nl>
Date: Sun, 31 Jul 2016 14:44:19 +0200
Please see attached advisories for more information. These issues were found during Summer of Pwnage (https://sumofpwn.nl), a Dutch community project. Its goal is to contribute to the security of popular, widely used OSS projects in a fun and educational way.

Attachment: cross_site_scripting_in_code_snippets_wordpress_plugin.txt
Description:

Attachment: cross_site_scripting_vulnerability_in_colorway_wordpress_theme.txt
Description:

Attachment: insert_php_wordpress_plugin_allows_authenticated_user_to_execute_arbitrary_php.txt
Description:

Attachment: multiple_vulnerabilities_in_all_in_one_wp_security___firewall_plugin_login_captcha.txt
Description:

Attachment: stored_cross_site_scripting_vulnerability_in_easy_testimonials_wordpress_plugin.txt
Description:

Previous By Date Next
Previous By Thread Next

Current thread: