Vulnerability Bulletins

Vulnerability Details: Reflected Cross-Site Scripting (XSS) Vulnerability in 2kb Amazon Affiliates Store


System information

   
Affected software Wordpress

Description

https://www.pluginvulnerabilities.com/2017/09/22/vulnerability-details-reflected-cross-site-scripting-xss-vulnerability-in-2kb-amazon-affiliates-store/The changelog entry for version 2.1.1 of the plugin 2kb Amazon Affiliates Store is “Security fix, thanks to Ricardo”. In looking over the changes made in that version we found it was a reflected cross-site scripting (XSS) vulnerability that was fixed. (After we finished up writing this post a report was released from the discoverer of

More info:

https://www.pluginvulnerabilities.com/2017/09/22/vulnerability-details-reflected-cross-site-scripting-xss-vulnerability-in-2kb-amazon-affiliates-store/

Standar resources

Property Value
CVE

Version history

Version Comments Date
1.0 Advisory issued 2017-09-23
Ministerio de Defensa
CNI
CCN
CCN-CERT