MidnightBSD

Advisories for bradesco_gateway_plugin_project

CVE-2013-5916 MEDIUM

Cross-site scripting (XSS) vulnerability in falha.php in the Bradesco Gateway plugin 2.0 for Wordpress, as used in the WP e-Commerce plugin, allows remote attackers to inject arbitrary web script or HTML via the QUERY_STRING.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
bradesco_gateway_plugin_project bradesco_gateway 2.0