Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

Re: Give 2.3.0 - Reflected XSS (WordPress Plugin)

Related Vulnerabilities: CVE-2019-9909  
Source 
                							

                <!--X-Body-Begin-->
<!--X-User-Header-->
<a href="/fulldisclosure/"><img src="/images/fulldisclosure-logo.png" class="l-logo right" alt="fulldisclosure logo" width="80"></a>
<h2 class="m-list"><a href="/fulldisclosure/">Full Disclosure</a>
mailing list archives</h2>
<!--X-User-Header-End-->
<!--X-TopPNI-->
<div class="nav-bar">
<div class="nav-link">
<a href="37"><img src="/images/left-icon-16x16.png" alt="Previous" width="16" height="16"></a>
<a href="date.html#38">By Date</a>
<a href="39"><img src="/images/right-icon-16x16.png" alt="Next" width="16" height="16"></a>
</div>
<div class="nav-link">
<a href="37"><img src="/images/left-icon-16x16.png" alt="Previous" width="16" height="16"></a>
<a href="index.html#38">By Thread</a>
<a href="39"><img src="/images/right-icon-16x16.png" alt="Next" width="16" height="16"></a>
</div>
<form class="nst-search center" action="/search/fulldisclosure">
<input class="nst-search-q" name="q" type="search" placeholder="List Archive Search">
<button class="nst-search-button" title="Search">
<img style="width:100%;aspect-ratio:1/1;" alt="" aria-hidden="true" src="/shared/images/nst-icons.svg#search">
</button>
</form>

</div>

<!--X-TopPNI-End-->
<!--X-MsgBody-->
<!--X-Subject-Header-Begin-->
<h1 class="m-title">Re: Give 2.3.0 - Reflected XSS (WordPress Plugin)</h1>
<hr>
<!--X-Subject-Header-End-->
<!--X-Head-of-Message-->


<em>From</em>: Henri Salo &lt;henri () nerv fi&gt;


<em>Date</em>: Fri, 22 Mar 2019 12:37:49 +0200


<!--X-Head-of-Message-End-->
<!--X-Head-Body-Sep-Begin-->
<hr>
<!--X-Head-Body-Sep-End-->
<!--X-Body-of-Message-->
<pre style="margin: 0em;">-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

On Tue, Feb 05, 2019 at 04:26:55PM +0100, Tim Coen wrote:
</pre><blockquote style="border-left: #5555EE solid 0.2em; margin: 0em; padding-left: 0.85em"><pre style="margin: 0em;"><a rel="nofollow" href="https://security-consulting.icu/blog/2019/02/wordpress-give-xss/">https://security-consulting.icu/blog/2019/02/wordpress-give-xss/</a>
</pre></blockquote><pre style="margin: 0em;">
MITRE assigned CVE-2019-9909 for this vulnerability.

- -- 
Henri Salo
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEE/aVSDznAZReWTkxKJ633pE6qdXQFAlyUuv0ACgkQJ633pE6q
dXTtjA/+LGkXL5jRpGk+L9ahJQWxAc56hX0cHdDauBpcRI3yAJFCkyWS4OEkrdWh
o6z7OikVhd2Xak1bmomNwE8mwZdclFuNDxG3z9/Emx+wNudGqZxC7ufsz3ZGMWfJ
6npZlE7NdnX0rRoae1BNAquGonOz1CfrsVUDjHVCaswPPLnQSkcmnkEuisZJCASk
VYTyvNyx9BGeroCvHmeXy0I2iuW7SBBnU2Fx942VGg7IlhPUYP1OV2RrCDD4q4ry
jJBAYb9bbMHJEaFjaCQuYefsWvk9PffrTiWXjb61nOJ9I3GiGUyzHFD7MT6th7rp
OJAy29Ry0hE45bSYxfWWzupmTyaUc8Stdh1kiKmfjQgtep/mB3WPYtY8YErAokZY
CK3OW8Xyh/rtav9Rwcpmy0frOnGipnn3BAv7QSXKyo8Qcj+BXlGxmJ76uHzioZ05
w7r9sJR5kgmaWz5MHTp2A054GLSeq/uvfe1dAEwRrIHvLOvG+bk0yEOKJRSyAKoZ
YDiw0k5fT26sRCRcrv0PAucZ3Q/n1r0IQrtQOr55Uq4FaQ7aUb0cUP2xmbbyWL1C
snMcPXj8WG+MV2o9WkqXOHxH/eLFq0J773Tbszp+CgYCXB87pV5Snp+1pjGml93w
I3fMR/XzKjcRGagntOde04y383rjJe1FKhvn29Sr9amTmRay7LM=
=sQEO
-----END PGP SIGNATURE-----

_______________________________________________
Sent through the Full Disclosure mailing list
<a rel="nofollow" href="https://nmap.org/mailman/listinfo/fulldisclosure">https://nmap.org/mailman/listinfo/fulldisclosure</a>
Web Archives &amp; RSS: <a rel="nofollow" href="http://seclists.org/fulldisclosure/">http://seclists.org/fulldisclosure/</a>

</pre>
<!--X-Body-of-Message-End-->
<!--X-MsgBody-End-->
<!--X-Follow-Ups-->
<hr>
<!--X-Follow-Ups-End-->
<!--X-References-->
<!--X-References-End-->
<!--X-BotPNI-->
<div class="nav-bar">
<div class="nav-link">
<a href="37"><img src="/images/left-icon-16x16.png" alt="Previous" width="16" height="16"></a>
<a href="date.html#38">By Date</a>
<a href="39"><img src="/images/right-icon-16x16.png" alt="Next" width="16" height="16"></a>
</div>
<div class="nav-link">
<a href="37"><img src="/images/left-icon-16x16.png" alt="Previous" width="16" height="16"></a>
<a href="index.html#38">By Thread</a>
<a href="39"><img src="/images/right-icon-16x16.png" alt="Next" width="16" height="16"></a>
</div>
</div>
<h3 class="m-thread">Current thread:</h3>
<ul class="thread">
<li><strong>Re: Give 2.3.0 - Reflected XSS (WordPress Plugin)</strong> <em>Henri Salo (Mar 22)</em>
</li></ul>


<!--X-BotPNI-End-->
<!--X-User-Footer-->
<!--X-User-Footer-End-->
<p>

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started