WordPress Plugin Vulnerabilities

Citizen Space <= 1.1 - Reflected Cross-Site Scripting (XSS)

Description

The citizen-space WordPress plugin was affected by a Reflected Cross-Site Scripting (XSS) security vulnerability.

Affects Plugins

Plugin icon
citizen-space
No known fix

References

URL
https://packetstormsecurity.com/files/#131501/
URL
https://advisories.dxw.com/advisories/reflected-xss-in-citizen-space-allows-attackers-to-view-sensitive-information-of-the-attackers-choosing/

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Submitter
ethicalhack3r
Submitter twitter
ethicalhack3r
Verified
No
WPVDB ID
fb03c3ad-9643-4031-8c8d-a93ead41b616

Timeline

Publicly Published
2015-04-16 (about 11 years ago)
Added
2015-04-16 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2021-11-15
Title
WP System Log < 1.0.21 - Unauthenticated Stored Cross-Site Scripting
Published
2025-01-06
Title
SpeakOut! Email Petitions < 4.5.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2019-06-18
Title
Seo by Rank Math <= 1.0.26 - XSS Issues
Published
2014-08-01
Title
jaspreetchahals-coupons-lite <= 2.1 - XSS in ZeroClipboard
Published
2024-10-28
Title
Post Status Notifier Lite and Premium <= 1.11.6 - Reflected Cross-Site Scripting via page