Lucene search
MitreCVE-2014-8751HistoryDec 16, 2014 - 6:59 p.m.
CVE-2014-8751
2014-12-1618:59:09
CWE-79
mitre
web.nvd.nist.gov
21
cve
2014
8751
xss
vulnerabilities
goywp webpress
remote attackers
web script
html
search_param
forms.php
nvd
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.9
Confidence
High
EPSS
0.001
Percentile
49.8%
Multiple cross-site scripting (XSS) vulnerabilities in goYWP WebPress 13.00.06 allow remote attackers to inject arbitrary web script or HTML via the (1) search_param parameter to search.php or (2) name, (3) address, or (4) comment parameter to forms.php.
Affected configurations
Node
goywpwebpressMatch13.00.06
Related
packetstorm
packetstorm
goYWP WebPress 13.00.06 Cross Site Scripting
2014-12-09 00:00:00
prion
prion
Cross site scripting
2014-12-16 18:59:00
nvd
nvd
CVE-2014-8751
2014-12-16 18:59:09
cvelist
cvelist
CVE-2014-8751
2014-12-16 18:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.9
Confidence
High
EPSS
0.001
Percentile
49.8%
Related for CVE-2014-8751