Описание
Multiple cross-site scripting (XSS) vulnerabilities in pay.php in the Pay With Tweet plugin before 1.2 allow remote attackers to inject arbitrary web script or HTML via the (1) link, (2) title, or (3) dl parameter.
Multiple cross-site scripting (XSS) vulnerabilities in pay.php in the Pay With Tweet plugin before 1.2 allow remote attackers to inject arbitrary web script or HTML via the (1) link, (2) title, or (3) dl parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2012-5349
- https://exchange.xforce.ibmcloud.com/vulnerabilities/72166
- http://secunia.com/advisories/47475
- http://wordpress.org/extend/plugins/pay-with-tweet/changelog
- http://www.exploit-db.com/exploits/18330
- http://www.osvdb.org/78205
- http://www.securityfocus.com/bid/51308
Связанные уязвимости
nvd
почти 13 лет назад
Multiple cross-site scripting (XSS) vulnerabilities in pay.php in the Pay With Tweet plugin before 1.2 allow remote attackers to inject arbitrary web script or HTML via the (1) link, (2) title, or (3) dl parameter.