Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <CAARZ5votcVxprd_KX811avUp=+yAHARGX_3geH18UaynOmS0bA@mail.gmail.com>
Date: Sat, 11 Jul 2015 04:06:07 +0000
From: Nitin Venkatesh <venkatesh.nitin@...il.com>
To: "oss-security@...ts.openwall.com" <oss-security@...ts.openwall.com>
Subject: CVE Request - Cross-Site Request Forgery, Cross-Site Scripting and
 SQL Injection in CP Contact Form with Paypal Wordpress Plugin v1.1.5

Hi,

I discovered Cross-Site Request Forgery, Cross-Site Scripting and SQL
Injection in CP Contact Form with Paypal Wordpress Plugin v1.1.5 which was
responsibly disclosed to the vendor who fixed the issues in v1.1.6.

I request a CVE for the same.

References:
http://seclists.org/fulldisclosure/2015/Jul/49

Thanks & regards,
Nitin Venkatesh

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.