CVE-2013-4954

NONECVSS 0.0

0.0

Multiple cross-site scripting (XSS) vulnerabilities in wp-login.php in the Genetech Solutions Pie-Register plugin before 1.31 for WordPress, when "Allow New Registrations to set their own Password" is enabled, allow remote attackers to inject arbitrary web script or HTML via the (1) pass1 or (2) pass2 parameter in a register action. NOTE: some of these details are obtained from third party information.

🔗 References (14)

cve@mitrehttp://osvdb.org/95160
cve@mitrehttp://plugins.trac.wordpress.org/changeset?reponame=&old=740249%40pie-register&new=740249%40pie-register
cve@mitrehttp://secunia.com/advisories/54123
cve@mitrehttp://wordpress.org/plugins/pie-register/changelog/
cve@mitrehttp://wordpress.org/support/topic/security-issue-web-application-cross-site-scripting
cve@mitrehttp://www.securityfocus.com/bid/61140
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/85604
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/95160
af854a3a-2127-422b-91ae-364da2661108http://plugins.trac.wordpress.org/changeset?reponame=&old=740249%40pie-register&new=740249%40pie-register
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/54123
af854a3a-2127-422b-91ae-364da2661108http://wordpress.org/plugins/pie-register/changelog/
af854a3a-2127-422b-91ae-364da2661108http://wordpress.org/support/topic/security-issue-web-application-cross-site-scripting
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/61140
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/85604

Is Your Infrastructure Affected by CVE-2013-4954?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2013-4954

📅 Published

🔄 Last Modified

🔗 References (14)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2013-4954?