cleantalk
Vulnerabilities and Security Researches

White Label CMS, CVE-2012-5388

CVE, Research URL

CVE-2012-5388

Application

White Label CMS

Published on
Oct 24, 2012
Research Description
Cross-site scripting (XSS) vulnerability in wlcms-plugin.php in the White Label CMS plugin 1.5 for WordPress allows remote authenticated administrators to inject arbitrary web script or HTML via the wlcms_o_developer_name parameter in a save action to wp-admin/admin.php, a related issue to CVE-2012-5387.
Affected versions
Min -, max 1.5.3.
Status
vulnerable