Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Fri, 22 May 2015 11:17:35 +0200
From: Adrián M. F. <adrimf85@...il.com>
To: oss-security@...ts.openwall.com
Cc: cve-assign@...re.org
Subject: CVE request: Multiple vulnerabilities in some WordPress plugins:
 NewStatPress & WordPress Landing Pages.

Hi!

I discovered multiple vulnerabilities in some WordPress plugins:

- Multiple vulnerabilities in WordPress plugin "NewStatPress" (SQLi, XSS)
* vulnerable version: 0.9.8
* patched version: 0.9.9
* vendor: https://wordpress.org/plugins/newstatpress/
* changelog: https://wordpress.org/plugins/newstatpress/changelog/

- Multiple vulnerabilities in WordPress plugin "WordPress Landing Pages"
(SQLi, XSS)
* vulnerable version: 1.8.4
* patched version: 1.8.5
* vendor: https://wordpress.org/plugins/landing-pages/
* changelog: https://wordpress.org/plugins/landing-pages/changelog/

I request a CVE for them.

Thanks!

A.

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ