CVE-2013-1464 in Audio Playerinformation

Résumé

par MITRE

Cross-site scripting (XSS) vulnerability in ssets/player.swf in the Audio Player plugin before 2.0.4.6 for Wordpress allows remote attackers to inject arbitrary web script or HTML via the playerID parameter.

Be aware that VulDB is the high quality source for vulnerability data.

Réserver

29/01/2013

Divulgation

07/02/2013

Modérer

accepté

Entrée

VDB-63523

CPE

prêt

Exploitation

Télécharger

EPSS

0.06414

KEV

non

Activités

très faible

Sources

Want to know what is going to be exploited?

We predict KEV entries!