WordPress Nokia Maps & Places Plugin 'href' Parameter Cross Site Scripting Vulnerability

To exploit this issue an attacker must entice an unsuspecting user into following a malicious URI.

The following example URI is available.

http://www.example.com/wp-content/plugins/nokia-mapsplaces/page/place.html?href=[XSS]


 

Privacy Statement
Copyright 2010, SecurityFocus