WordPress WPtouch Plugin "wptouch_settings" Parameter Cross-Site Scripting

Products

Downloads

Purchase

Support

Partner

Corporate

Home Page>Vulnerabilities: WordPress WPtouch Plugin "wptouch_settings" Parameter Cross-Site Scripting

Site Map

News Feed

WordPress WPtouch Plugin "wptouch_settings" Parameter Cross-Site Scripting

WPtouch is a plugin for Wordpress. The WPtouch plugin is exposed to a cross-site scripting issue because it fails to properly sanitize user-supplied input to the "wptouch_settings" parameter of the "wp-content/plugins/wptouch/include/adsense-new.php" script. WPtouch version 1.9.20 is affected.

Ref: http://www.htbridge.ch/advisory/xss_in_wptouch_wordpress_plugin.html

10.50.38 - CVE: Not Available
Platform: Web Application - Cross Site Scripting