CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2016-10984 – Echo Sign < 1.2 - Reflected Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2016-10984
The echosign plugin before 1.2 for WordPress has XSS via the inc.php page parameter. El plugin echosign versiones anteriores a 1.2 para WordPress, presenta una vulnerabilidad de tipo XSS por medio del parámetro page del archivo inc.php. • https://0x62626262.wordpress.com/2016/04/21/echosign-plugin-for-wordpress-xss-vulnerability https://wordpress.org/plugins/echosign/#developers https://wpvulndb.com/vulnerabilities/8465 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2016-10985 – Echo Sign < 1.2 - Reflected Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2016-10985
The echosign plugin before 1.2 for WordPress has XSS via the templates/add_templates.php id parameter. El plugin echosign versiones anteriores a 1.2 para WordPress, presenta una vulnerabilidad de tipo XSS por medio del parámetro id del archivo templates/add_templates.php. • https://0x62626262.wordpress.com/2016/04/21/echosign-plugin-for-wordpress-xss-vulnerability https://wordpress.org/plugins/echosign/#developers https://wpvulndb.com/vulnerabilities/8465 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •