ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Better WP Security Plugin - Stored XSS

Product
Better WP Security
Description
Better WP Security plugins is prone to a stored XSS vulnerability that allow to steal cookies or gain privileged access to the affected site.
Solution
Update the plugin to 3.5.4 version.
Classification
Type XSS (Cross Site Scripting)
OWASP Top 10 A3: Cross Site Scripting (XSS)
References
Exploit-DB
CVE
Name CVE-N/A
Versions
Affected In <= 3.5.3
Fixed In 3.5.4
Disclosure date
2013-08-02
Credits
Richard Warren