RSS   Vulnerabilities for 'Real3d flipbook'   RSS

2019-09-16
 
CVE-2016-10967

CWE-79
 

 
The real3d-flipbook-lite plugin 1.0 for WordPress has XSS via the wp-content/plugins/real3d-flipbook/includes/flipbooks.php bookId parameter.

 
 
CVE-2016-10966

CWE-22
 

 
The real3d-flipbook-lite plugin 1.0 for WordPress has bookName=../ directory traversal for file upload.

 
 
CVE-2016-10965

CWE-22
 

 
The real3d-flipbook-lite plugin 1.0 for WordPress has deleteBook=../ directory traversal for file deletion.

 


Copyright 2024, cxsecurity.com

 

Back to Top