WordPress Comment Attachment插件跨站脚本漏洞
2013-10-09 19:19
676 查看
| ||||||||||||||||
WordPress的Comment Attachment插件1.0版本中存在跨站脚本漏洞。远程攻击者可通过‘Attachment标题’字段利用该漏洞注入任意Web脚本或HTML。 | ||||||||||||||||
http://wordpress.org/plugins/comment-attachment/ | ||||||||||||||||
|
相关文章推荐
- WordPress CommentLuv插件‘_ajax_nonce’参数跨站脚本漏洞
- WordPress Comment Extra Fields插件‘swfupload.swf’跨站脚本漏洞
- WordPress NextGEN Gallery插件‘test-head’参数跨站脚本漏洞
- WordPress Audio Player插件跨站脚本漏洞
- WordPress Count Per Day插件 ‘daytoshow’参数跨站脚本漏洞
- WordPress ADIF Log Search Widget 插件‘logbook_search.php’跨站脚本漏洞
- WordPress NextGEN Gallery插件‘swfupload.swf’多个跨站脚本漏洞
- WordPress Platinum SEO插件跨站脚本漏洞
- WordPress WP Photo Album Plus插件‘wppa-tag’跨站脚本漏洞
- WordPress Bradesco Gateway插件‘falha.php’跨站脚本漏洞
- WordPress Pretty Photo插件‘hashrel’参数跨站脚本漏洞
- WordPress Design Approval System插件‘step’参数跨站脚本漏洞
- WordPress Super Cache插件跨站脚本漏洞
- WordPress WP Photo Album Plus插件“commentid”参数跨站脚本漏洞
- WordPress Securimage-WP插件‘siwp_test.php’跨站脚本漏洞
- WordPress Smart Flv插件‘jwplayer.swf’多个跨站脚本漏洞
- Wordpress prettyPhoto插件跨站脚本漏洞
- WordPress Contact Form插件‘cntctfrm_contact_emai’参数跨站脚本漏洞
- WordPress Events Manager插件多个跨站脚本漏洞
- WordPress Events Manager插件多个跨站脚本漏洞