Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-5179

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2011-5179
Last Modified 17 Dec 2012 12:00:00
Published 20 Sep 2012 06:55:23
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-5179

Summary

Cross-site scripting (XSS) vulnerability in skysa-official/skysa.php in Skysa App Bar Integration plugin, possibly before 1.04, for WordPress allows remote attackers to inject arbitrary web script or HTML via the submit parameter.

Vulnerable Systems

Application

  • Skysa App Bar Integration Plugin 1.0

  • Skysa App Bar Integration Plugin 1.01

  • Skysa App Bar Integration Plugin 1.02

  • Skysa App Bar Integration Plugin 1.03


References

XF - skysaappbar-skysa-xss(71486)

BID - 50824

BUGTRAQ - 20111127 Wordpress skysa-official plugin Cross-Site Scripting Vulnerabilities


Last Updated: 27 May 2016 10:58:24