CVE-2013-5916 Information

Description

Cross-site scripting (XSS) vulnerability in falha.php in the Bradesco Gateway plugin 2.0 for Wordpress as used in the WP e-Commerce plugin allows remote attackers to inject arbitrary web script or HTML via the QUERY_STRING.

Reference

http://archives.neohapsis.com/archives/bugtraq/2013-09/0112.html http://osvdb.org/97624 http://www.securityfocus.com/bid/62617