Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [day] [month] [year] [list]
Date: Thu, 7 Jan 2016 16:40:03 +0530
From: Rahul Pratap Singh <techno.rps@...il.com>
To: oss-security@...ts.openwall.com
Subject: CVE request: WP Symposium Pro Social Network plugin XSS and Critical CSRF

Hi,

During my research, I found some vulnerabilites in "WP Symposium Pro Social
Network plugin" version 15.12 (latest) and wanted to request you to assign
CVE-id for them. I've already contacted vendor, who has deployed a patch.


vendor: https://wordpress.org/support/plugin/wp-symposium-pro

Patch: Update to version 16.1

Pls, let me know, if any additional information is needed.

Ref:
https://wordpress.org/plugins/wp-symposium-pro/changelog/
http://www.wpsymposiumpro.com/wp-symposium-pro-16-01-critical-update/

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.