CVE-2013-2695

Currently unrated

Key Information:

Vendor: Wordpress
Status: WP Symposium
Vendor: CVE Published:; 28 March 2014

Summary

Cross-site scripting (XSS) vulnerability in invite.php in the WP Symposium plugin before 13.04 for WordPress allows remote attackers to inject arbitrary web script or HTML via the u parameter.

References

http://osvdb.org/92275

vdb-entryx_refsource_OSVDB

http://secunia.com/advisories/52864

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Mar 28, 2014
Vulnerability Reserved
Mar 26, 2013