Lucene search
Larry W. CashdollarPATCHSTACK:251FFC10DCF9344C9B34D04130980388HistoryJun 05, 2015 - 12:00 a.m.
WordPress XCloner Plugin <= 3.1.2 - XSS
2015-06-0500:00:00
Larry W. Cashdollar
patchstack.com
14
EPSS
0.001
Percentile
40.3%
Because of this vulnerability, remote authenticated users can inject arbitrary web script or HTML in the xcloner_show page via the “excl_manual” parameter to wpadmin/plugins.php.
Solution
Update the plugin.
Related
prion
prion
Cross site scripting
2015-06-17 18:59:00
cvelist
cvelist
CVE-2015-4337
2015-06-17 18:00:00
cve
cve
CVE-2015-4337
2015-06-17 18:59:05
nvd
nvd
CVE-2015-4337
2015-06-17 18:59:05
packetstorm
packetstorm
WordPress XCloner 3.1.2 XSS / Command Execution
2015-05-31 00:00:00
wpvulndb
wpvulndb
XCloner - Backup and Restore 3.1.2 - XSS & Command Execution
2015-05-10 00:00:00
securityvulns
securityvulns