Kento Post View Counter <= 2.8 – CSRF & multiple XSS | CVE 2016-10982

Affects Plugins

kento-post-view-counter

No known fix

References

CVE

CVE-2016-10982

CVE

CVE-2016-10981

CVE

CVE-2016-10980

URL

https://packetstormsecurity.com/files/#136736/

URL

https://www.openwall.com/lists/oss-security/2016/04/16/3

URL

https://www.openwall.com/lists/oss-security/2016/04/16/2

Miscellaneous

Submitter

firefart

Submitter website

https://firefart.at/

Submitter twitter

_FireFart_

Verified

No

WPVDB ID

9e973435-79a1-4487-8944-d8aa1d5814cb

Timeline

Publicly Published

2016-04-17 (about 10 years ago)

Added

2016-05-02 (about 10 years ago)

Last Updated

2020-09-22 (about 5 years ago)

Other

Published

Title

Published

2019-02-13

Title

Online Accessibility <= 2.0.10 - CSRF and lack of Authorisation in AJAX methods

Published

2018-10-09

Title

WP Fastest Cache <= 0.8.8.5 - CSRF and multiple XSS

Published

2018-09-15

Title

Hide My WP <= 2.0.02 - SQL Injection & Script Injection

Published

2015-01-12

Title

Pods < 2.5 - Authenticated XSS & CSRF

Published

2019-10-17

Title

Sliced Invoices < 3.8.4 - Multiple Vulnerabilities