CVE-2014-9444 in Frontend UploaderИнформация

Сводка

по MITRE

Cross-site scripting (XSS) vulnerability in the Frontend Uploader plugin 0.9.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the errors[fu-disallowed-mime-type][0][name] parameter to the default URI.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Резервировать

02.01.2015

Раскрытие

02.01.2015

Модерация

принято

Вход

VDB-73473

EPSS

0.06701

KEV

Нет

Деятельности

Очень низкий

Источники

Interested in the pricing of exploits?

See the underground prices here!