WordPress Plugin Vulnerabilities

Wu-Rating 1.0 - wu-ratepost.php v Parameter Reflected XSS

Description

The wu-rating WordPress plugin was affected by a wu-ratepost.php v Parameter Reflected XSS security vulnerability.

Affects Plugins

Plugin icon
wu-rating
No known fix

References

CVE
CVE-2014-4601
URL
https://codevigilant.com/disclosure/wp-plugin-wu-rating-a3-cross-site-scripting-xss

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Submitter
pvdl
Verified
No
WPVDB ID
a53bb5a7-ef2b-4427-9c05-1d843f246336

Timeline

Publicly Published
2014-09-22 (about 11 years ago)
Added
2014-09-22 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2017-07-25
Title
Weblibrarian < 3.4.8.6 - XSS
Published
2014-08-01
Title
A Forms 1.4.0 - a-forms.php a_form_shortcode Function Multiple Parameter XSS
Published
2024-10-17
Title
All in One Slider <= 1.1 - Reflected Cross-Site Scripting
Published
2021-07-05
Title
Popular Brand SVG Icons - Simple Icons < 2.7.8 - Contributor+ Stored XSS
Published
2025-04-24
Title
Contact Form by Bit Form < 2.18.4 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload