| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 23 Nov 2011 07:38:58 GMT From: Amir@...st.ir To: bugtraq@...urityfocus.com Subject: Wordpress clickdesk-live-support-chat plugin Cross-Site Scripting Vulnerabilities a bug in Wordpress clickdesk-live-support-chat plugin that allows to us to occur a Cross-Site Scripting on a Remote machin. ################################################################################################################################ # # # Www.Aria-security.com/forum/ # # # ################################################################################################################################ # # # Wordpress clickdesk-live-support-chat plugin Cross-Site Scripting Vulnerabilities # # # # Download......: http://wordpress.org/extend/plugins/clickdesk-live-support-chat/ # # # # Bug Found.....: http://Aria-Security.Com/forum/ # # # # discovery.....: Am!r (IrIsT™) # # # # contact.......: Amir[at]IrIsT.ir # # # # Exploit.......: http://www.site.com/[path]/wp-content/plugins/clickdesk-live-support-chat/clickdesk.php?cdwidgetid=[xss] # # # # Google Search.: "Powered by Wordpress" # # # # Me............: IrIsT.Ir & Aria-security.com # # # ################################################################################################################################
Powered by blists - more mailing lists