A Cross Site Scripting vulnerability was found in the Top 10 - Popular Posts WordPress Plugin. This vulnerability allows an attacker to perform a actions such as stealing Administrators' session tokens. An attacker has to lure the user into opening a malicious website to exploit this vulnerability.
A Cross-Site Scripting vulnerability was found in the Simple Membership WordPress Plugin. This vulnerability allows an attacker to perform a actions such as stealing Administrators' session tokens. An attacker has to lure the user into opening a malicious website to exploit this vulnerability.
A Cross-Site Scripting vulnerability was found in the Profile Builder WordPress Plugin. This vulnerability allows an attacker to perform a actions such as stealing Administrators' session tokens. An attacker has to lure the user into opening a malicious website to exploit this vulnerability.
A Cross Site Scripting vulnerability was found in the Peter's Login Redirect WordPress Plugin. This vulnerability allows an attacker to perform a actions such as stealing Administrators' session tokens. An attacker has to lure the user into opening a malicious website to exploit this vulnerability.
A Cross Site Scripting vulnerability was found in the Paid Memberships Pro WordPress Plugin. This vulnerability allows an attacker to perform a actions such as stealing Administrators' session tokens. An attacker has to lure the user into opening a malicious website to exploit this vulnerability.
A Cross Site Scripting vulnerability was found in the No External Links WordPress Plugin. This vulnerability allows an attacker to perform a actions such as stealing Administrators' session tokens. An attacker has to lure the user into opening a malicious website to exploit this vulnerability.
Multiple reflected Cross Site Scripting (XSS) vulnerabilities have been found in the Ninja Forms WordPress Plugin. An attacker can exploit this vulnerability by inserting malicious JavaScript into the browser application.
A Cross-Site Scripting vulnerability was found in the Master Slider WordPress Plugin. This vulnerability allows an attacker to perform a actions such as stealing Administrators' session tokens. An attacker has to lure the user into opening a malicious website to exploit this vulnerability.
A Cross-Site Scripting vulnerability was found in the Google Forms Plugin WordPress Plugin. This vulnerability allows an attacker to perform a actions such as stealing Administrators' session tokens. An attacker has to lure the user into opening a malicious website to exploit this vulnerability.
Symfony 2.0.x before 2.0.20 does not process URL encoded data consistently within the Routing and Security components, which allows remote attackers to bypass intended URI restrictions via a doubly encoded string.