CVE-2014-125109 | BestWebSoft Portfolio Plugin up to 2.27 bws_menu/bws_menu.php bws_add_menu_render bwsmn_form_email cross site scripting

Inserito da Angelo Barbosa | Dic 24, 2023 | CVE

A vulnerability was found in BestWebSoft Portfolio Plugin up to 2.27. It has been declared as problematic. This vulnerability affects the function bws_add_menu_render of the file bws_menu/bws_menu.php. The manipulation of the argument bwsmn_form_email leads to cross site scripting.

This vulnerability was named CVE-2014-125109. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2014-125109 | BestWebSoft Portfolio Plugin up to 2.27 bws_menu/bws_menu.php bws_add_menu_render bwsmn_form_email cross site scripting

Post correlati

CVE-2024-5804 | Conditional Fields for Contact Form 7 Plugin up to 2.4.13 on WordPress Setting cross-site request forgery

CVE-2023-51750 | ScaleFusion 10.5.2 File Download Privilege Escalation

CVE-2024-36042 | Silverpeas up to 6.3.4 AuthenticationServlet Password improper authentication

CVE-2021-47487 | Linux Kernel up to 5.10.76/5.14.15 amdgpu wr_buf out-of-bounds write (eb3b6805e3e9/d3ed72495a59/5afa7898ab7a)