WordPress Plugin Vulnerabilities

Content Grabber 1.0 - Cross-Site Scripting (XSS)

Description

The content-grabber WordPress plugin was affected by a Cross-Site Scripting (XSS) security vulnerability.

Affects Plugins

Plugin icon
content-grabber
No known fix

References

CVE
CVE-2015-9469
URL
https://packetstormsecurity.com/files/#132910/

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
4.8 (medium)

Miscellaneous

Submitter
pvdl
Verified
No
WPVDB ID
1ef07948-4d75-431b-9ac1-35d9acb1d8be

Timeline

Publicly Published
2015-06-14 (about 10 years ago)
Added
2015-08-05 (about 10 years ago)
Last Updated
2020-09-22 (about 5 years ago)

Other

Published
Title
Published
2025-01-16
Title
SpiderDisplay <= 1.9.1 - Reflected Cross-Site Scripting
Published
2025-02-11
Title
NGG Smart Image Search < 3.3.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2022-02-03
Title
Yet Another Stars Rating < 3.0.0 - Reflected Cross-Site Scripting
Published
2014-08-01
Title
Marekkis Watermark 0.9.2 - wp-admin/options-general.php pfad Parameter XSS
Published
2024-03-29
Title
iFlyChat – WordPress Chat <= 4.7.2 - Authenticated (Contributor+) Stored Cross-Site Scripting