RSS   Vulnerabilities for 'Shortcode-redirect'   RSS

2012-10-08
 
CVE-2012-5325

CWE-79
 

 
Multiple cross-site scripting (XSS) vulnerabilities in the scr_do_redirect function in scr.php in the Shortcode Redirect plugin 1.0.01 and earlier for WordPress allow remote authenticated users with certain permissions to inject arbitrary web script or HTML via the (1) url or (2) sec attributes in a redirect tag.

 

 >>> Vendor: Cartpauj 2 Products
Shortcode-redirect
Mingle-forum


Copyright 2024, cxsecurity.com

 

Back to Top