The "Social Pug - Easy Social Share Buttons" plugin before 1.2.6 for WordPress allows XSS via the wp-admin/admin.php?page=dpsp-toolkit dpsp_message_class parameter.
References
Link | Resource |
---|---|
https://advisories.dxw.com/advisories/reflected-xss-in-social-pug-easy-social-share-buttons-could-allow-an-attacker-to-do-almost-anything-an-admin-user-can/ | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-01-09T23:00:00
Updated: 2019-01-09T23:57:01
Reserved: 2019-01-09T00:00:00
Link: CVE-2016-10736
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-01-09T23:29:00.277
Modified: 2019-01-15T15:26:05.610
Link: CVE-2016-10736
JSON object: View
Redhat Information
No data.
CWE