WordPress Plugin Vulnerabilities

Bradesco - falha.php URI Reflected XSS

Description

The bradesco-gateway WordPress plugin was affected by a falha.php URI Reflected XSS security vulnerability.

Affects Plugins

Plugin icon
bradesco-gateway
No known fix

References

CVE
CVE-2013-5916
URL
https://packetstormsecurity.com/files/#123356/

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Verified
No
WPVDB ID
285301b4-e037-4d1c-af7b-b31dccb29e9f

Timeline

Publicly Published
2014-08-01 (about 11 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2025-04-04
Title
Gallery Blocks with Lightbox < 3.2.6 - Contributor+ Stored XSS
Published
2026-04-23
Title
ITERAS < 1.8.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes
Published
2024-02-12
Title
PB oEmbed HTML5 Audio <= 2.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via shortcode
Published
2024-08-16
Title
Meta Field Block < 1.2.14 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2021-10-06
Title
Formidable Form Builder < 5.0.07 - Admin+ Stored Cross-Site Scripting