Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Thu, 12 May 2016 16:45:18 +0300
From: Henri Salo <henri@...v.fi>
To: oss-security@...ts.openwall.com
Subject: Re: Reflected XSS in three Wordpress plugins.

On Wed, May 11, 2016 at 12:28:33PM -0400, Larry W. Cashdollar wrote:
> Download Site: https://wordpress.org/plugins/enhanced-tooltipglossary
> DWF-2016-77246
> Advisory: http://www.vapidlabs.com/wp/wp_advisory.php?v=37

This seems to be fixed in 3.3.5 version (patch not tested by me).

-- 
Henri Salo

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.