cve/CVE-2015-9497.md at master - cve - Gitea: Git with a cup of tea

0xMarcio/cve

Files

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

706 B

Raw Permalink Blame History

CVE-2015-9497

Description

The ad-inserter plugin before 1.5.3 for WordPress has CSRF with resultant XSS via wp-admin/options-general.php?page=ad-inserter.php.

POC

Reference

Github