PT-2019-7428 · Unknown · Content-Grabber

Published

2019-10-10

Updated

2019-10-16

CVE-2015-9469

CVSS v2.0

3.5

Low

Vector

AV:N/AC:M/Au:S/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions content-grabber plugin version 1.0

Description The issue concerns a cross-site scripting (XSS) problem. It is exploited via the obj field name or obj field id variables.

Recommendations For content-grabber plugin version 1.0, consider disabling the plugin until a patch is available to prevent exploitation via the obj field name or obj field id variables.

Exploit

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2015-9469

Affected Products

Content-Grabber

PT-2019-7428 · Unknown · Content-Grabber

CVE-2015-9469

Weakness Enumeration

Related Identifiers

Affected Products

References · 6