Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
commentluv commentluv vulnerabilities and exploits
(subscribe to this query)
435
VMScore
CVE-2013-1409
Cross-site scripting (XSS) vulnerability in the CommentLuv plugin prior to 2.92.4 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the _ajax_nonce parameter to wp-admin/admin-ajax.php.