SSCHADV2013-006 - WordPress Plugin 'AJAX Comment Page 3.25' Cross-site scripting vulnerability
Advisory:
|
WordPress Plugin ‘AJAX Comment Page 3.25’ Cross-site scripting vulnerability
|
Advisory ID:
|
SSCHADV2013-006
|
Author:
|
Stefan Schurtz
|
Affected Software:
|
Successfully tested on AJAX Comment Page 3.25
|
Vendor URL:
|
|
Vendor Status:
|
fixed
|
CVE-ID:
|
Requested
|
======================
Vulnerability Description
======================
Vulnerability Description
======================
The parameter ‘max’ of the WordPress plugin ‘AJAX Comment Page’ is prone to a XSS vulnerability