WordPress Plugin Vulnerabilities

PopCash.Net Code Integration Tool <= 1.0 - Cross-Site Scripting (XSS)

Description

The PopCash Code Integration Tool WordPress plugin was affected by a Cross-Site Scripting (XSS) security vulnerability.

Affects Plugins

Plugin icon
popcashnet-code-integration-tool
Fixed in 1.1

References

CVE
CVE-2017-15810
URL
https://packetstormsecurity.com/files/#144583/
URL
https://plugins.trac.wordpress.org/changeset/1745833/popcashnet-code-integration-tool

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
6.1 (medium)

Miscellaneous

Submitter
ethicalhack3r
Submitter twitter
ethicalhack3r
Verified
No
WPVDB ID
12bec00e-914f-42dd-8f35-6fdf14fdaeb5

Timeline

Publicly Published
2017-10-12 (about 8 years ago)
Added
2017-10-26 (about 8 years ago)
Last Updated
2020-09-22 (about 5 years ago)

Other

Published
Title
Published
2025-02-20
Title
igumbi Online Booking < 1.41 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2025-12-06
Title
Xpro Elementor Addons < 1.4.20 - Contributor+ Stored XSS
Published
2025-11-26
Title
wp-twitpic <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2015-05-14
Title
Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scripting (XSS)
Published
2021-07-30
Title
You Shang <= 1.0.1 - Authenticated Stored Cross-Site Scripting