WordPress Plugin Vulnerabilities

Zingiri Web Shop < 2.4.2 - zing.inc.php page Parameter XSS

Description

The zingiri-web-shop WordPress plugin was affected by a zing.inc.php page Parameter XSS security vulnerability.

Affects Plugins

Plugin icon
zingiri-web-shop
Fixed in 2.4.2

References

CVE
CVE-2012-6506
Exploitdb
18787
URL
https://exchange.xforce.ibmcloud.com/vulnerabilities/75178

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Verified
No
WPVDB ID
9d426f92-670d-4189-ae93-4b69e57a4de2

Timeline

Publicly Published
2014-08-01 (about 11 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2024-08-29
Title
Liquido <= 1.0.1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2024-02-12
Title
PJ News Ticker < 1.9.6 - Contributor+ Stored XSS
Published
2021-06-01
Title
All 404 Redirect to Homepage < 2.1 - Authenticated Stored Cross-Site Scripting (XSS)
Published
2022-10-28
Title
WP Best Quiz <= 1.0 - Author+ Stored XSS
Published
2024-09-05
Title
Advanced Sermons < 3.4 - Authenticated (Contributor+) Stored Cross-Site Scripting