Date: Fri, 22 May 2015 11:17:35 +0200 From: Adrián M. F. <adrimf85@...il.com> To: oss-security@...ts.openwall.com Cc: cve-assign@...re.org Subject: CVE request: Multiple vulnerabilities in some WordPress plugins: NewStatPress & WordPress Landing Pages. Hi! I discovered multiple vulnerabilities in some WordPress plugins: - Multiple vulnerabilities in WordPress plugin "NewStatPress" (SQLi, XSS) * vulnerable version: 0.9.8 * patched version: 0.9.9 * vendor: https://wordpress.org/plugins/newstatpress/ * changelog: https://wordpress.org/plugins/newstatpress/changelog/ - Multiple vulnerabilities in WordPress plugin "WordPress Landing Pages" (SQLi, XSS) * vulnerable version: 1.8.4 * patched version: 1.8.5 * vendor: https://wordpress.org/plugins/landing-pages/ * changelog: https://wordpress.org/plugins/landing-pages/changelog/ I request a CVE for them. Thanks! A.
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ