CVE-2014-8751  goYWP WebPress Multiple XSS (Cross-Site Scripting) Security Vulnerabilities

binary-code-1024x768

Exploit Title: goYWP WebPress Multiple XSS (Cross-Site Scripting) Security Vulnerabilities

Product: WebPress

Vendor: goYWP

Vulnerable Versions: 13.00.06

Tested Version: 13.00.06

Advisory Publication: Dec 09, 2014

Latest Update: Dec 09, 2014

Vulnerability Type: Cross-Site Scripting [CWE-79]

CVE Reference: CVE-2014-8751

Credit: Wang Jing [SPMS, Nanyang Technological University (NTU), Singapore]

http://whitehatpostlike.lofter.com/post/1cf58911_4f1859c

Advertisements