Back to search
CVE-2013-3487
Published: Mar 3, 2014
Modified: Aug 6, 2024
PUBLISHED
Description
Multiple cross-site scripting (XSS) vulnerabilities in the security log in the BulletProof Security plugin before .49 for WordPress allow remote attackers to inject arbitrary web script or HTML via unspecified HTML header fields to (1) 400.php, (2) 403.php, or (3) 403.php.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
53614
third-party-advisory
x_refsource_SECUNIA
wp-bulletproofsecurity-cve20133487-xss(86160)
vdb-entry
x_refsource_XF
61583
vdb-entry
x_refsource_BID
95928
vdb-entry
x_refsource_OSVDB
http://wordpress.org/plugins/bulletproof-security/changelog
x_refsource_CONFIRM
95930
vdb-entry
x_refsource_OSVDB
95929
vdb-entry
x_refsource_OSVDB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now