|
Description
|
|
(#Several vulnerabilities have been identified in third-party plugins for WordPress:#- Collne Welcart e-Commerce - CVE-2016-4825: PHP object injection leading to arbitrary PHP code execution via specially crafted serialized data#- Collne Welcart e-Commerce - CVE-2016-4826, CVE-2016-4827: cross-site scripting. A remote attacker can exploit it in order to execute arbitrary Javascript or HTML code by inciting their victim into following a specially formed link#- Collne Welcart e-Commerce - CVE-2016-4828: session hijacking by leveraging knowledge of the e-mail address associated with an account#- Resume Submissions & Job Postings: stored cross-site scripting in "wp-admin/admin.php?page=rsjp-submissions"#- SupportFlow: cross-site scripting in the tickets. A remote attacker can exploit it in order to execute arbitrary Javascript or HTML code by inciting their victim into following a specially formed link#- MemberSonic Lite: session hijacking by leveraging knowledge of the e-mail address associated with an account#- Security Audit Log: reflected cross-site scripting. A remote attacker can exploit it in order to execute arbitrary Javascript or HTML code by inciting their victim into following a specially formed link#- PeepSo: privilege escalation via the PeepSoProfilePreferencesAjax->save() function#- Real 3D Flipbook: cross-site scripting. A remote attacker can exploit it in order to execute arbitrary Javascript or HTML code by inciting their victim into following a specially formed link#- Real 3D Flipbook: arbitrary pictures upload#- Real 3D Flipbook: arbitrary file deletion.##Proof of concept are available.)
|
