WordPress Plugin Vulnerabilities

WP Live.php <= 1.2.1 - Cross-Site Scripting (XSS)

Description

The WP Live.php WordPress plugin was affected by a Cross-Site Scripting (XSS) security vulnerability.

Affects Plugins

Plugin icon
wp-livephp
No known fix

References

CVE
CVE-2012-5346
URL
https://packetstormsecurity.com/files/#108282/
URL
https://exchange.xforce.ibmcloud.com/vulnerabilities/72080

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Verified
No
WPVDB ID
9b8b467d-c1e2-46e9-b113-1d0bbd4a91b1

Timeline

Publicly Published
2012-01-01 (about 14 years ago)
Added
2019-08-26 (about 6 years ago)
Last Updated
2020-02-13 (about 6 years ago)

Other

Published
Title
Published
2023-11-20
Title
Parallax Image < 1.8 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2024-12-06
Title
CardGate Payments for WooCommerce < 3.2.2 - Reflected Cross-Site Scripting
Published
2022-03-01
Title
WPC Smart Wishlist for WooCommerce < 2.9.4 - Reflected Cross-Site Scripting
Published
2023-08-11
Title
ImageRecycle pdf & image compression < 3.1.11 - Reflected XSS
Published
2014-08-01
Title
Download Manager <= 2.2.2 - admin.php cid Parameter XSS