RSS   Vulnerabilities for 'Wp-funeral-press'   RSS

2013-05-10
 
CVE-2013-3529

 

 
Multiple cross-site scripting (XSS) vulnerabilities in user/obits.php in the WP FuneralPress plugin before 1.1.7 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) message, (2) photo-message, or (3) youtube-message parameter.

 

 >>> Vendor: Smartypantsplugins 3 Products
Wp-funeral-press
Sp project & document manager
Sp project \& document manager


Copyright 2024, cxsecurity.com

 

Back to Top