-
Please add the InfusionSoft plugin vuln to scanner if not already...
INFO:
http://packetstormsecurity.com/files/128591/Wordpress-InfusionSoft-Upload.html
https://research.g0blin.co.uk/cve-2014-6446/
…
-
CVE-2011-4955/bsuite http://osvdb.org/74046 "bSuite Plugin for WordPress index.php Multiple Parameter XSS"
```
bSuite Plugin for WordPress contains a flaw that allows a remote cross-site scripting (X…
fgeek updated
9 years ago
-
http://osvdb.org/71840
https://www.htbridge.com/advisory/HTB22848
fgeek updated
9 years ago
-
https://www.htbridge.com/advisory/HTB23082
http://osvdb.org/81068
http://osvdb.org/81069
http://osvdb.org/81070
http://osvdb.org/81071
Fixed in version 1.8.2
Check that this does not create duplica…
fgeek updated
9 years ago
-
In my opinion we should add new vulnerability type for information disclosure. Here is example where AUTHBYPASS has been used incorrectly.
```
Easy Photo Album 1.1.5 - Album Information…
fgeek updated
9 years ago
-
Check that all issues listed in are in our database:
- [x] http://seclists.org/fulldisclosure/2014/May/157
- [x] http://seclists.org/fulldisclosure/2014/Jul/65
fgeek updated
9 years ago
-
http://1337day.com/exploit/20576
- 2014-07-27: I also reported this to OSVDB as I couldn't find this.
- 2014-07-28: OSVDB responds that this is on their queue
fgeek updated
9 years ago
-
http://blog.sucuri.net/2014/08/database-takeover-in-custom-contact-forms.html
https://wordpress.org/plugins/custom-contact-forms/changelog/
-
Please add to plugin_vulns when DB changes are over, thank you!
http://www.openwall.com/lists/oss-security/2014/08/19/3
fgeek updated
9 years ago
-
You detect the construct theme however every request that has been sent for pages part of the theme have come back with 404s.
Ryan, I can send you a debug log in private if you need it.