CVE-2014-9032 in WordPress
Summary
Cross-site scripting (XSS) vulnerability in the media-playlists feature in WordPress before 3.9.x before 3.9.3 and 4.x before 4.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Reservation
11/20/2014
Disclosure
11/25/2014
Entries
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerability | CWE | Exp | Cou | CVE |
|---|---|---|---|---|---|
| 68561 | WordPress media-playlists cross site scripting | 79 | High | Official fix | CVE-2014-9032 |
| 68273 | WordPress cross site scripting | 80 | High | Official fix | CVE-2014-9032 |