metadata - update
parent
4fdd549ffc
commit
a3700a6d4b
|
@ -16,7 +16,8 @@ info:
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 3
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/adsense-plugin/"
|
||||||
|
tags: cve,cve2017,wordpress,wpscan,wp-plugin,xss,bws-adpush,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -14,9 +14,10 @@ info:
|
||||||
classification:
|
classification:
|
||||||
cve-id: CVE-2017-18490
|
cve-id: CVE-2017-18490
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/contact-form-multi/"
|
||||||
|
tags: cve,cve2017,wordpress,bws-contact-form,wpscan,wp-plugin,xss,authenticated,contact-form-multi
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -14,9 +14,10 @@ info:
|
||||||
classification:
|
classification:
|
||||||
cve-id: CVE-2017-18491
|
cve-id: CVE-2017-18491
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/contact-form-plugin/"
|
||||||
|
tags: cve,cve2017,wordpress,bws,contact-form,wpscan,wp-plugin,xss,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -14,9 +14,10 @@ info:
|
||||||
classification:
|
classification:
|
||||||
cve-id: CVE-2017-18492
|
cve-id: CVE-2017-18492
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/contact-form-to-db/"
|
||||||
|
tags: cve,cve2017,wordpress,wpscan,bws-contact-form,wp-plugin,xss,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -14,9 +14,10 @@ info:
|
||||||
classification:
|
classification:
|
||||||
cve-id: CVE-2017-18493
|
cve-id: CVE-2017-18493
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/custom-admin-page/"
|
||||||
|
tags: cve,cve2017,wordpress,bws-adminpage,wpscan,wp-plugin,xss,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -14,9 +14,10 @@ info:
|
||||||
classification:
|
classification:
|
||||||
cve-id: CVE-2017-18494
|
cve-id: CVE-2017-18494
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/custom-search-plugin/"
|
||||||
|
tags: cve,cve2017,wordpress,bws-custom-search,wpscan,wp-plugin,xss,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -14,9 +14,10 @@ info:
|
||||||
classification:
|
classification:
|
||||||
cve-id: CVE-2017-18496
|
cve-id: CVE-2017-18496
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/htaccess/"
|
||||||
|
tags: cve,cve2017,wordpress,wpscan,bws-htaccess,wp-plugin,xss,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -14,9 +14,10 @@ info:
|
||||||
classification:
|
classification:
|
||||||
cve-id: CVE-2017-18500
|
cve-id: CVE-2017-18500
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/social-buttons-pack/"
|
||||||
|
tags: cve,cve2017,wordpress,wpscan,bws-social-buttons,wp-plugin,xss,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -14,9 +14,10 @@ info:
|
||||||
classification:
|
classification:
|
||||||
cve-id: CVE-2017-18501
|
cve-id: CVE-2017-18501
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwwww-query: "/wp-content/plugins/social-login-bws/"
|
||||||
|
tags: cve,cve2017,wordpress,wpscan,bws-social-login,wp-plugin,xss,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -14,9 +14,10 @@ info:
|
||||||
classification:
|
classification:
|
||||||
cve-id: CVE-2017-18502
|
cve-id: CVE-2017-18502
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/subscriber/"
|
||||||
|
tags: cve,cve2017,wordpress,wpscan,bws-subscribers,wp-plugin,xss,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -14,9 +14,10 @@ info:
|
||||||
classification:
|
classification:
|
||||||
cve-id: CVE-2017-18505
|
cve-id: CVE-2017-18505
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/twitter-plugin/"
|
||||||
|
tags: cve,cve2017,wordpress,wpscan,bws-twitter,wp-plugin,xss,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -6,6 +6,7 @@ info:
|
||||||
severity: medium
|
severity: medium
|
||||||
description: |
|
description: |
|
||||||
The bws-linkedin plugin before 1.0.5 for WordPress has multiple XSS issues.
|
The bws-linkedin plugin before 1.0.5 for WordPress has multiple XSS issues.
|
||||||
|
remediation: Fixed in version 1.0.5
|
||||||
reference:
|
reference:
|
||||||
- https://wpscan.com/vulnerability/efd816c3-90d4-40bf-850a-0e4c1a756694
|
- https://wpscan.com/vulnerability/efd816c3-90d4-40bf-850a-0e4c1a756694
|
||||||
- https://nvd.nist.gov/vuln/detail/CVE-2017-18516
|
- https://nvd.nist.gov/vuln/detail/CVE-2017-18516
|
||||||
|
@ -14,9 +15,10 @@ info:
|
||||||
classification:
|
classification:
|
||||||
cve-id: CVE-2017-18516
|
cve-id: CVE-2017-18516
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/bws-linkedin/"
|
||||||
|
tags: cve,cve2017,wordpress,wp-plugin,wpscan,bws-linkedin,xss,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -6,6 +6,7 @@ info:
|
||||||
severity: medium
|
severity: medium
|
||||||
description: |
|
description: |
|
||||||
The bws-pinterest plugin before 1.0.5 for WordPress has multiple XSS issues.
|
The bws-pinterest plugin before 1.0.5 for WordPress has multiple XSS issues.
|
||||||
|
remediation: Fixed in version 1.0.5
|
||||||
reference:
|
reference:
|
||||||
- https://wpscan.com/vulnerability/efd816c3-90d4-40bf-850a-0e4c1a756694
|
- https://wpscan.com/vulnerability/efd816c3-90d4-40bf-850a-0e4c1a756694
|
||||||
- https://nvd.nist.gov/vuln/detail/CVE-2017-18517
|
- https://nvd.nist.gov/vuln/detail/CVE-2017-18517
|
||||||
|
@ -16,7 +17,8 @@ info:
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 2
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/bws-pinterest/"
|
||||||
|
tags: cve,cve2017,wordpress,wpscan,bws-pinterest,wp-plugin,xss,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -6,6 +6,7 @@ info:
|
||||||
severity: medium
|
severity: medium
|
||||||
description: |
|
description: |
|
||||||
The bws-smtp plugin before 1.1.0 for WordPress has multiple XSS issues.
|
The bws-smtp plugin before 1.1.0 for WordPress has multiple XSS issues.
|
||||||
|
remediation: Fixed in version 1.1.0
|
||||||
reference:
|
reference:
|
||||||
- https://wpscan.com/vulnerability/efd816c3-90d4-40bf-850a-0e4c1a756694
|
- https://wpscan.com/vulnerability/efd816c3-90d4-40bf-850a-0e4c1a756694
|
||||||
- https://nvd.nist.gov/vuln/detail/CVE-2017-18518
|
- https://nvd.nist.gov/vuln/detail/CVE-2017-18518
|
||||||
|
@ -16,7 +17,8 @@ info:
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 2
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwwww-query: "/wp-content/plugins/bws-smtp/"
|
||||||
|
tags: cve,cve2017,wordpress,wp-plugin,wpscan,bws-smtp,xss,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -14,9 +14,10 @@ info:
|
||||||
classification:
|
classification:
|
||||||
cve-id: CVE-2017-18527
|
cve-id: CVE-2017-18527
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/pagination/"
|
||||||
|
tags: cve,cve2017,wordpress,wp-plugin,wpscan,bws-pagination,bws-xss,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -14,9 +14,10 @@ info:
|
||||||
classification:
|
classification:
|
||||||
cve-id: CVE-2017-18528
|
cve-id: CVE-2017-18528
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicewww-query: "/wp-content/plugins/pdf-print/"
|
||||||
|
tags: cve,cve2017,wordpress,wp-plugin,bws-pdf-print,wpscan,xss,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -16,7 +16,8 @@ info:
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 2
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/promobar/"
|
||||||
|
tags: cve,cve2017,wordpress,wp-plugin,bws-promobar,wpscan,xss,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -14,9 +14,10 @@ info:
|
||||||
classification:
|
classification:
|
||||||
cve-id: CVE-2017-18530
|
cve-id: CVE-2017-18530
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/rating-bws/"
|
||||||
|
tags: cve,cve2017,wordpress,wp-plugin,bws-rating,wpscan,xss,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -16,7 +16,8 @@ info:
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 2
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/realty/"
|
||||||
|
tags: cve,cve2017,wordpress,wp-plugin,bws-realty,wpscan,xss,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -14,9 +14,10 @@ info:
|
||||||
classification:
|
classification:
|
||||||
cve-id: CVE-2017-18537
|
cve-id: CVE-2017-18537
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicewww-query: "/wp-content/plugins/visitors-online/"
|
||||||
|
tags: cve,cve2017,wordpress,wp-plugin,bws-visitors-online,wpscan,xss,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -14,9 +14,10 @@ info:
|
||||||
classification:
|
classification:
|
||||||
cve-id: CVE-2017-18542
|
cve-id: CVE-2017-18542
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/zendesk-help-center/"
|
||||||
|
tags: cve,cve2017,wordpress,wp-plugin,bws-zendesk,wpscan,xss,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -6,6 +6,7 @@ info:
|
||||||
severity: medium
|
severity: medium
|
||||||
description: |
|
description: |
|
||||||
The bws-google-analytics plugin before 1.7.1 for WordPress has multiple XSS issues.
|
The bws-google-analytics plugin before 1.7.1 for WordPress has multiple XSS issues.
|
||||||
|
remediation: Fixed in version 1.7.1
|
||||||
reference:
|
reference:
|
||||||
- https://wpscan.com/vulnerability/efd816c3-90d4-40bf-850a-0e4c1a756694
|
- https://wpscan.com/vulnerability/efd816c3-90d4-40bf-850a-0e4c1a756694
|
||||||
- https://nvd.nist.gov/vuln/detail/CVE-2017-18556
|
- https://nvd.nist.gov/vuln/detail/CVE-2017-18556
|
||||||
|
@ -14,9 +15,10 @@ info:
|
||||||
classification:
|
classification:
|
||||||
cve-id: CVE-2017-18556
|
cve-id: CVE-2017-18556
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/bws-google-analytics/"
|
||||||
|
tags: cve,cve2017,wordpress,wp-plugin,xss,bws-google-analytics,wpscan,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -6,6 +6,7 @@ info:
|
||||||
severity: medium
|
severity: medium
|
||||||
description: |
|
description: |
|
||||||
The bws-google-maps plugin before 1.3.6 for WordPress has multiple XSS issues.
|
The bws-google-maps plugin before 1.3.6 for WordPress has multiple XSS issues.
|
||||||
|
remediation: Fixed in version 1.3.6
|
||||||
reference:
|
reference:
|
||||||
- https://wpscan.com/vulnerability/efd816c3-90d4-40bf-850a-0e4c1a756694
|
- https://wpscan.com/vulnerability/efd816c3-90d4-40bf-850a-0e4c1a756694
|
||||||
- https://nvd.nist.gov/vuln/detail/CVE-2017-18557
|
- https://nvd.nist.gov/vuln/detail/CVE-2017-18557
|
||||||
|
@ -14,9 +15,10 @@ info:
|
||||||
classification:
|
classification:
|
||||||
cve-id: CVE-2017-18557
|
cve-id: CVE-2017-18557
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/bws-google-maps/"
|
||||||
|
tags: cve,cve2017,wordpress,wp-plugin,xss,bws-google-maps,wpscan,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -14,9 +14,10 @@ info:
|
||||||
classification:
|
classification:
|
||||||
cve-id: CVE-2017-18558
|
cve-id: CVE-2017-18558
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/bws-testimonials/"
|
||||||
|
tags: cve,cve2017,wordpress,wp-plugin,xss,bws-testimonials,wpscan,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -14,9 +14,10 @@ info:
|
||||||
classification:
|
classification:
|
||||||
cve-id: CVE-2017-18562
|
cve-id: CVE-2017-18562
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/error-log-viewer/"
|
||||||
|
tags: cve,cve2017,wordpress,wp-plugin,xss,bws-error-log,wpscan,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -14,9 +14,10 @@ info:
|
||||||
classification:
|
classification:
|
||||||
cve-id: CVE-2017-18564
|
cve-id: CVE-2017-18564
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/sender/"
|
||||||
|
tags: cve,cve2017,wordpress,wp-plugin,xss,bws-sender,wpscan,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -14,9 +14,10 @@ info:
|
||||||
classification:
|
classification:
|
||||||
cve-id: CVE-2017-18565
|
cve-id: CVE-2017-18565
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/updater/"
|
||||||
|
tags: cve,cve2017,wordpress,wp-plugin,xss,bws-updater,wpscan,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -14,9 +14,10 @@ info:
|
||||||
classification:
|
classification:
|
||||||
cve-id: CVE-2017-18566
|
cve-id: CVE-2017-18566
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 2
|
max-request: 3
|
||||||
verified: true
|
verified: true
|
||||||
tags: cve,cve2017,wordpress,wp-plugin,xss,authenticated
|
publicwww-query: "/wp-content/plugins/user-role/"
|
||||||
|
tags: cve,cve2017,wordpress,wp-plugin,xss,bws-user-role,wpscan,authenticated
|
||||||
|
|
||||||
http:
|
http:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
Loading…
Reference in New Issue