CVE-2014-100018 in Unconfirmedinformação

Sumário

de MITRE

Cross-site scripting (XSS) vulnerability in the Unconfirmed plugin before 1.2.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter in the unconfirmed page to wp-admin/network/users.php.

Be aware that VulDB is the high quality source for vulnerability data.

Reservar

13/01/2015

Divulgação

13/01/2015

Moderação

aceite

Entrada

VDB-73608

CPE

pronto

EPSS

0.02023

KEV

não

Atividades

muito baixo

Fontes

Do you need the next level of professionalism?

Upgrade your account now!