Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-5916

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2013-5916
Last Modified 09 May 2014 01:42:40
Published 08 May 2014 11:55:02
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2013-5916

Summary

Cross-site scripting (XSS) vulnerability in falha.php in the Bradesco Gateway plugin 2.0 for Wordpress, as used in the WP e-Commerce plugin, allows remote attackers to inject arbitrary web script or HTML via the QUERY_STRING.

Vulnerable Systems

Application

  • Bradesco Gateway Plugin Project Bradesco Gateway 2.0


References

BID - 62617

OSVDB - 97624

BUGTRAQ - 20130923 [IBliss Security Advisory] Cross-site scripting ( XSS ) in Bradesco gateway wordpress plugin


Last Updated: 27 May 2016 11:05:13