CVE Reference: CVE-2013-3526

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2013-3526

Description:
Cross-site scripting (XSS) vulnerability in js/ta_loaded.js.php in the Traffic Analyzer plugin, possibly 3.3.2 and earlier, for WordPress allows remote attackers to inject arbitrary web script or HTML via the aoid parameter.

CVE Status:
Candidate

References:

XF
  http://xforce.iss.net/xforce/xfdb/83311

SAID
  Secunia Advisory: SA52929

OSVDB
  92197

MISC
  http://packetstormsecurity.com/files/121167/WordPress-Traffic-Analyzer-Cross-Site-Scripting.html

BID
  58948


Return to the previous page.