mailing list archives
[CVE Request] IndiaNIC Testimonial 2.2 WP plugin
From: "Adéla Goldová" <roguecoder () hush com>
Date: Mon, 02 Sep 2013 00:35:30 +0200
The testimonial plugin by IndiaNIC contains CSRF, XSS and SQLi vulnerabilities.
I was able to deface the website, extract user credentials etc through crafted forms.
Can someone please assign CVE's to this?
- [CVE Request] IndiaNIC Testimonial 2.2 WP plugin Adéla Goldová (Sep 01)