Lucene search
Kacper SzurekPATCHSTACK:0670EDE90D6962350C4C82F290A426C7HistoryDec 02, 2014 - 12:00 a.m.
WordPress Nextend Facebook Connect Plugin 1.4.59 - XSS
2014-12-0200:00:00
Kacper Szurek
patchstack.com
4
0.003 Low
EPSS
Percentile
68.3%
Because of a cross-site scripting vulnerability in Nextend Facebook Connect plugin, anyone can change plugin settings.
Solution
Update the plugin to version 1.5.1.
| CPE | Name | Operator | Version |
|---|---|---|---|
| nextend facebook connect | le | 1.4.59 |
References
Related
cvelist
cvelist
CVE-2014-8800
2014-12-05 15:00:00
nvd
nvd
CVE-2014-8800
2014-12-05 15:59:02
cve
cve
CVE-2014-8800
2014-12-05 15:59:02
wpvulndb
wpvulndb
Nextend Facebook Connect <= 1.4.59 - Cross-Site Scripting (XSS)
2014-02-12 00:00:00
prion
prion
Cross site scripting
2014-12-05 15:59:00
exploitpack
exploitpack
WordPress Plugin Nextend Facebook Connect 1.4.59 - Cross-Site Scripting
2014-12-02 00:00:00
exploitdb
exploitdb
WordPress Plugin Nextend Facebook Connect 1.4.59 - Cross-Site Scripting
2014-12-02 00:00:00