2kb Amazon Affiliates Store (XSS) CVE-2017-14622
Cross-site scripting located in the plugin “2kb Amazon Affiliates Store” version 2.1.0 of wordpress (https://es.wordpress.org/plugins/2kb-amazon-affiliates-store/).
Cross-site scripting located in the plugin “2kb Amazon Affiliates Store” version 2.1.0 of wordpress (https://es.wordpress.org/plugins/2kb-amazon-affiliates-store/).
By performing a legal web audit (white box) of a client, I found myself in front of a Kodak InSite portal version 8.0.