VYPR

Glass

by Google

CVEs (2)

  • CVE-2021-24434Jul 12, 2021
    risk 0.00cvss epss 0.00

    The Glass WordPress plugin through 1.3.2 does not sanitise or escape its "Glass Pages" setting before outputting in a page, leading to a Stored Cross-Site Scripting issue. Furthermore, the plugin did not have CSRF check in place when saving its settings, allowing the issue to be…

  • CVE-2013-4872Jul 18, 2013
    risk 0.00cvss epss 0.00

    Google Glass before XE6 does not properly restrict the processing of QR codes, which allows physically proximate attackers to modify the configuration or redirect users to arbitrary web sites via a crafted symbol, as demonstrated by selecting a Wi-Fi access point in order to…