CVE-2014-9098 in Contus Video Galleryinformazioni

Riassunto

di MITRE

Multiple cross-site scripting (XSS) vulnerabilities in the Apptha WordPress Video Gallery (contus-video-gallery) plugin 2.5, possibly before 2014-07-23, for WordPress allow remote authenticated users to inject arbitrary web script or HTML via the videoadssearchQuery parameter to (1) videoads/videoads.php, (2) video/video.php, or (3) playlist/playlist.php.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Prenotare

26/11/2014

Divulgazione

26/11/2014

Moderazione

accettato

CPE

pronto

Sfruttamento

Scaricare

EPSS

0.02875

KEV

no

Attività

molto basso

Fonti

Do you want to use VulDB in your project?

Use the official API to access entries easily!