Page 3 of 21 results (0.004 seconds)
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-10941 – Podlove Podcast Publisher < 2.3.16 - Cross-Site Request Forgery to Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2016-10941
16 Sep 2016 — The podlove-podcasting-plugin-for-wordpress plugin before 2.3.16 for WordPress has XSS exploitable via CSRF. El plugin podlove-podcasting-plugin-for-wordpress versiones anteriores a 2.3.16 para WordPress, presenta una vulnerabilidad de tipo XSS explotable por medio de un ataque de tipo CSRF. • https://blog.ripstech.com/2016/the-state-of-wordpress-security • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-352: Cross-Site Request Forgery (CSRF) •