BulletProof Security <= .52.4 - Authenticated Cross-Site Scripting (XSS)

Affects Plugin

fixed in version .52.5

References

URL https://web.archive.org/web/20160119120657/https://permalink.gmane.org/gmane.comp.security.oss.general/18026
URL http://forum.ait-pro.com/forums/topic/bps-changelog/
URL https://github.com/cybersecurityworks/Disclosed/issues/3

Classification

Type XSS
OWASP Top 10 A7: Cross-Site Scripting (XSS)
CWE CWE-79

Miscellaneous

Submitter ethicalhack3r
Submitter Website https://dewhurstsecurity.com/
Submitter Twitter ethicalhack3r
Views 4764
Verified No
WPVDB ID 8224

Timeline

Publicly Published 2015-09-14 (over 4 years ago)
Added 2015-10-27 (over 4 years ago)
Last Updated 2019-10-31 (7 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin