Web application abuses : WordPress WP-Members Multiple Cross Site Scripting Vulnerabilities

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.804059

Categoría: Web application abuses

Título: WordPress WP-Members Multiple Cross Site Scripting Vulnerabilities

Resumen: WordPress WP-Members Plugin is prone to multiple cross site scripting vulnerabilities.

Descripción: Summary:
WordPress WP-Members Plugin is prone to multiple cross site scripting vulnerabilities.

Vulnerability Insight:
Flaws are due to input sanitation errors in multiple GET and POST parameter.

Vulnerability Impact:
Successful exploitation will allow attacker to execute arbitrary HTML and
script code in a user's browser session in the context of an affected site.

Affected Software/OS:
WordPress WP-Members Plugin version 2.8.9, Other versions may also be affected.

Solution:
Update to version WordPress WP-Members Plugin 2.8.10 or later.

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:P/A:N

Copyright Copyright (C) 2014 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.804059
Categoría:	Web application abuses
Título:	WordPress WP-Members Multiple Cross Site Scripting Vulnerabilities
Resumen:	WordPress WP-Members Plugin is prone to multiple cross site scripting vulnerabilities.
Descripción:	Summary: WordPress WP-Members Plugin is prone to multiple cross site scripting vulnerabilities. Vulnerability Insight: Flaws are due to input sanitation errors in multiple GET and POST parameter. Vulnerability Impact: Successful exploitation will allow attacker to execute arbitrary HTML and script code in a user's browser session in the context of an affected site. Affected Software/OS: WordPress WP-Members Plugin version 2.8.9, Other versions may also be affected. Solution: Update to version WordPress WP-Members Plugin 2.8.10 or later. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Copyright	Copyright (C) 2014 Greenbone AG