mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-15 03:30:24 +02:00
0xMarcio
756 B
756 B
CVE-2015-9422
Description
The PlugNedit Adaptive Editor plugin before 6.2.0 for WordPress has CSRF with resultant XSS via wp-admin/admin-ajax.php?action=simple_fields_field_type_post_dialog_load plugnedit_width, pnemedcount, PlugneditBGColor, PlugneditEditorMargin, or plugneditcontent parameters.