RSS   Vulnerabilities for 'Cryptographp'   RSS

2008-01-09
 
CVE-2008-0203

CWE-79
 
 
Multiple cross-site scripting (XSS) vulnerabilities in cryptographp/admin.php in the Cryptographp 1.2 and earlier plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) cryptwidth, (2) cryptheight, (3) bgimg, (4) charR, (5) charG, (6) charB, (7) charclear, (8) tfont, (9) charel, (10) charelc, (11) charelv, (12) charnbmin, (13) charnbmax, (14) charspace, (15) charsizemin, (16) charsizemax, (17) charanglemax, (18) noisepxmin, (19) noisepxmax, (20) noiselinemin, (21) noiselinemax, (22) nbcirclemin, (23) nbcirclemax, or (24) brushsize parameter to wp-admin/options-general.php.

 

 >>> Vendor: Wordpress 54 Products
Wordpress
Wordpress mu
BLIX
Blixed
Blixkrieg
Unamed theme
Unamed theme se
Sirius
POOL
Wordpressclassic
Pictpress
Wp-contactform
Cryptographp
Math comment spam protection plugin
Captcha
Filemanager
Wp forum
Wp cal plugin
Fgallery plugin
Adserve
Permalinks migration plugin
Wassup plugin
Wordspew
St newsletter plugin
Wp-footnotes
Search unleashed plugin
Dean logan wp-people plugin
Photo album plugin
Sniplets plugin
Wp download
WPSS
Download monitor plugin
Upload file plugin
Wp downloads manager
Spambam plugin
Page flip image gallery plugin
Peter's math anti-spam for wordpress
Audio player
Wordpress-users
Fcchat widget
Plugin newsletter plugin
Alert before you post
Lanoba social plugin
Slideshow gallery2
Pay-with-tweet
Terillion reviews plugin
Wp maintenance mode plugin
Booking system
Twitget plugin
Alipay plugin
Cbi referral manager
Amasin plugin
Gb gallery slideshow plugin
Mail plugin

Copyright 2024, cxsecurity.com

 

Back to Top