WordPress Plugin Vulnerabilities

Googmonify <= 0.5.1 - CSRF & XSS

Description

The Googmonify WordPress plugin was affected by a CSRF & XSS security vulnerability.

Affects Plugins

Plugin icon
googmonify
No known fix

References

CVE
CVE-2015-9427
URL
https://packetstormsecurity.com/files/#133267/

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
6.5 (medium)

Miscellaneous

Submitter
ethicalhack3r
Submitter twitter
ethicalhack3r
Verified
No
WPVDB ID
3f054fb9-d612-4f8b-a89b-64a91a2cdd56

Timeline

Publicly Published
2015-08-24 (about 10 years ago)
Added
2015-08-24 (about 10 years ago)
Last Updated
2020-09-22 (about 5 years ago)

Other

Published
Title
Published
2025-01-03
Title
5centsCDN <= 25.4.15 - Reflected Cross-Site Scripting
Published
2025-01-13
Title
moseter <= 1.3.1 - Reflected Cross-Site Scripting
Published
2024-11-08
Title
Element Pack Elementor Addons < 5.10.3 - Contributor+ Stored XSS
Published
2023-10-03
Title
Form Maker by 10Web < 1.15.19 - Unauthenticated Stored XSS
Published
2023-03-14
Title
Easy Event calendar <= 1.0 - Admin+ Stored XSS