1 results (0.004 seconds)
CVSS: 6.1EPSS: 0%CPEs: 15EXPL: 4
CVSS: 6.1EPSS: 0%CPEs: 15EXPL: 4CVE-2013-4626 – BackWPup < 3.0.13 - Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2013-4626
21 Aug 2013 — Cross-site scripting (XSS) vulnerability in the BackWPup plugin before 3.0.13 for WordPress allows remote attackers to inject arbitrary web script or HTML via the tab parameter to wp-admin/admin.php. Vulnerabilidad XSS en el plugin BackWPup anterior a v3.0.13 para WordPress permite a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarias a través del parámetro "tab" a wp-admin/admin.php. WordPress BackWPup plugin version 3.0.12 suffers from a cross site scripting vulnerability. • https://packetstorm.news/files/id/122916 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •