Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Vulnerabilities identified in several WordPress plugins

Vulnerabilities identified in several WordPress plugins

2015/08/12

Threatpost - (International) Researchers from dxw Security discovered cross-site scripting (XSS) and blind Structured Query Language (SQL) vulnerabilities in WordPress' iframe version 3.0, Yoast's Google Analytics, and Symposium plugins for WordPress that could give some users administrative privileges.

Source: https://threatpost.com/vulnerabilities-identified-in-several-wordpress-plugins/114255

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:25:00