CVE-2013-7475

The contact-form-plugin plugin before 3.52 for WordPress has XSS.

View Full Alert

Related Posts

  • CVE-2013-7473

    Windu CMS 2.2 allows CSRF via admin/users/?mn=admin.message.error to add an admin account. View Full Alert

  • CVE-2013-7472

    The "Count per Day" plugin before 3.2.6 for WordPress allows XSS via the wp-admin/?page=cpd_metaboxes daytoshow parameter. View Full Alert

  • CVE-2013-7474

    Windu CMS 2.2 allows XSS via the name parameter to admin/content/edit or admin/content/add, or the username parameter to admin/users. View Full Alert