WordPress Plugin Vulnerabilities

geshi-source-colorer <= 0.13 - XSS in ZeroClipboard

Description

The geshi-source-colorer WordPress plugin was affected by a XSS in ZeroClipboard security vulnerability.

Affects Plugins

Plugin icon
geshi-source-colorer
No known fix

References

CVE
CVE-2013-1808
URL
https://www.openwall.com/lists/oss-security/2013/03/10/2
URL
https://en.0day.today/exploits/20396

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Verified
No
WPVDB ID
17da2a72-9b57-49d6-8ad5-3292d3ea80d7

Timeline

Publicly Published
2014-08-01 (about 11 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2025-06-18
Title
FormLift for Infusionsoft Web Forms < 7.5.21 - Reflected Cross-Site Scripting
Published
2014-11-24
Title
WP Photo Album Plus 5.4.17 - Cross-Site Scripting (XSS)
Published
2025-10-24
Title
The7 — Ultimate WordPress & WooCommerce Theme < 12.9.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'the7_fancy_title_css'
Published
2026-03-03
Title
Morkva UA Shipping < 1.7.10 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'Weight, kg' Field
Published
2024-11-08
Title
Geoportail Shortcode <= 2.4.4 - Authenticated (Contributor+) Stored Cross-Site Scripting