Security News -  Security Reviews -   Exploits -  Tools -  UNIX Focus -  Windows Focus
SecuriTeam™  Beyond Security®  SecuriTeam™ Home  Ask the Team  Mailing Lists  Advertising Info  Blogs SecuriTeam™ in Your Inbox   E-mail this CVE-2012-5229 to a friend New vulnerability? New tool? Tell us	CVE-2012-5229 WordPress Slideshow Gallery Plugin gallery-css.php cross-site scripting Vulnerability     Credit: The original article can be found at: http://packetstormsecurity.org/files/view/109114/wpslideshowgallery-xss.txt The information has been provided by Bret Hawk. Website Security Scan Code Vulnerability Test Network Assessment Tool Detect hidden vulnerabilities Exhaustive automated testing Real-time, continuous security Get guidance from professionals of internal or 3rd party code. scanning for your entire network    CVE-2012-5229 Details Check for CVE-2012-5229 Vulnerability Assessment and Management. Automated Pen Testing for 50 to 50,000 nodes beyondsecurity.com/vulnerability-scanner Vulnerable Systems:  * Wordpress Slideshow Gallery2 and prior WordPress Slideshow Galelry Plugin is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the gallery-css.php script. A remote attacker could exploit this vulnerability using the border parameter in a specially-crafted URL to execute script in a victim's Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials. Vendor Status: Currently we are not aware of any vendor-supplied patches. CVE Information: CVE-2012-5229 Disclosure Timeline: Publish Date : 2012-10-01 Last Update Date : 2012-10-02  Comments on CVE-2012-5229:  Add new comment:  Subject:  Name/Nick/Email:          Chars Left:
	Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus

Copyright © 1998-2017 Beyond Security® All rights reserved.
Terms of Use Site Privacy Statement.
SecuriTeam™ is a trademark of Beyond Security®