Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-5916


Vulnerability Score 4.3 4.3
CVE Id CVE-2013-5916
Last Modified 09 May 2014 01:42:40
Published 08 May 2014 11:55:02
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE



Cross-site scripting (XSS) vulnerability in falha.php in the Bradesco Gateway plugin 2.0 for Wordpress, as used in the WP e-Commerce plugin, allows remote attackers to inject arbitrary web script or HTML via the QUERY_STRING.

Vulnerable Systems


  • Bradesco Gateway Plugin Project Bradesco Gateway 2.0


BID - 62617

OSVDB - 97624

BUGTRAQ - 20130923 [IBliss Security Advisory] Cross-site scripting ( XSS ) in Bradesco gateway wordpress plugin

Last Updated: 27 May 2016 11:05:13