Date: Sun, 17 Jul 2016 09:59:27 +0200 From: Summer of Pwnage <lists@...urify.nl> To: oss-security@...ts.openwall.com Subject: Multiple stored Cross-Site Scripting vulnerabilities affecting three WordPress Plugins Please see attached advisories for more information. These issues were found during Summer of Pwnage (https://sumofpwn.nl), a Dutch community project. Its goal is to contribute to the security of popular, widely used OSS projects in a fun and educational way. View attachment "persistent_cross_site_scripting_in_all_in_one_seo_pack_wordpress_plugin.txt" of type "text/plain" (5890 bytes) View attachment "persistent_cross_site_scripting_in_wordpress_activity_log_plugin.txt" of type "text/plain" (4374 bytes) View attachment "persistent_cross_site_scripting_in_wp_live_chat_support_plugin.txt" of type "text/plain" (5969 bytes)
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ