Vulnerabilities

CVE-2011-4562

by Fred · 28/11/2011

Multiple cross-site scripting (XSS) vulnerabilities in (1) view/admin/log_item.php and (2) view/admin/log_item_details.php in the Redirection plugin 2.2.9 for WordPress allow remote attackers to inject arbitrary web script or HTML via the Referer HTTP header in a request to a post that does not exist.

Date published : 2011-11-28

http://www.securityfocus.com/bid/49985

http://plugins.trac.wordpress.org/changeset?reponame=&new=447262%40redirection&old=421721%40redirection

Similar

Tags: Cybersecurity Alert