Cross-Site Scripting Vulnerability in Pixabay Images Plugin for WordPress
CVE-2015-1366

Currently unrated

Key Information:

Vendor

Wordpress
Status
Pixabay Images
Vendor
CVE Published:
27 January 2015

What is CVE-2015-1366?

The Pixabay Images plugin for WordPress is susceptible to a cross-site scripting (XSS) vulnerability that permits remote attackers to inject arbitrary web scripts or HTML via the image_user parameter. This security flaw was discovered prior to version 2.4 of the plugin and poses a risk of malicious exploitation, potentially leading to deceptive actions performed on behalf of the user.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://seclists.org/fulldisclosure/2015/Jan/75
mailing-listx_refsource_FULLDISC
http://www.securityfocus.com/bid/73931
vdb-entryx_refsource_BID
https://exchange.xforce.ibmcloud.com/vulnerabilities/100039
vdb-entryx_refsource_XF

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.