Cross-site scripting (XSS) vulnerability in the Another WordPress Classifieds Plugin plugin for WordPress allows remote attackers to inject arbitrary web script or HTML via the query string to the default URI.
References
Configurations
History
21 Nov 2024, 02:03
Type | Values Removed | Values Added |
---|---|---|
References | () http://packetstormsecurity.com/files/129035/Another-WordPress-Classifieds-Cross-Site-Scripting-SQL-Injection.html - Exploit | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/98588 - |
25 Sep 2024, 14:33
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:strategy11:awp_classifieds:3.3.1:*:*:*:*:wordpress:*:* | |
First Time |
Strategy11 awp Classifieds
Strategy11 |
Information
Published : 2015-01-13 11:59
Updated : 2024-11-21 02:03
NVD link : CVE-2014-10012
Mitre link : CVE-2014-10012
CVE.ORG link : CVE-2014-10012
JSON object : View
Products Affected
strategy11
- awp_classifieds
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')