Multiple Cross-Site Scripting (XSS) Vulnerabilities in goYWP WebPress 13.00.06

Multiple Cross-Site Scripting (XSS) Vulnerabilities in goYWP WebPress 13.00.06

CVE-2014-8751 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in goYWP WebPress 13.00.06 allow remote attackers to inject arbitrary web script or HTML via the (1) search_param parameter to search.php or (2) name, (3) address, or (4) comment parameter to forms.php.

Learn more about our Web App Pen Testing.