Forums

WordPress › Support » Plugins and Hacks

WordPress advanced-text-widget Plugin Cross-Site Scripting Vulnerabilities (2 posts)

  1. Arif Skygear
    Member
    Posted 6 months ago #

    a bug in WordPress advanced-text-widget Plugin that allows to us to occur a Cross-Site Scripting (XSS) on a Remote machine.
    See more bugtrag :

    http://seclists.org/bugtraq/2011/Nov/133

    Exploit sample : http://www.site.com/path/wp-content/plugins/advanced-text-widget/advancedtext.php?page=xss

  2. henrisalo
    Member
    Posted 5 months ago #

    Fixed in 2.0.2.

Reply

You must log in to post.

About this Topic

Tags