WordPress advanced-text-widget Plugin Cross-Site Scripting Vulnerabilities | WordPress.org

Arif Skygear
(@skygear)

12 years, 5 months ago

a bug in WordPress advanced-text-widget Plugin that allows to us to occur a Cross-Site Scripting (XSS) on a Remote machine.
See more bugtrag :

http://seclists.org/bugtraq/2011/Nov/133

Exploit sample : http://www.site.com/%5Bpath%5D/wp-content/plugins/advanced-text-widget/advancedtext.php?page=%5Bxss%5D

Viewing 1 replies (of 1 total)

henrisalo
(@henrisalo)

12 years, 4 months ago

Fixed in 2.0.2.

Viewing 1 replies (of 1 total)

The topic ‘WordPress advanced-text-widget Plugin Cross-Site Scripting Vulnerabilities’ is closed to new replies.

Tags

xss

In: Plugins
1 reply
2 participants
Last reply from: henrisalo
Last activity: 12 years, 4 months ago
Status: not a support question

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics