RSS   Vulnerabilities for 'Share and follow'   RSS

2012-05-21
 
CVE-2012-2917

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in the Share and Follow plugin 1.80.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the CDN API Key (cnd-key) in a share-and-follow-menu page to wp-admin/admin.php.

 


Copyright 2024, cxsecurity.com

 

Back to Top