CVE-2014-9444

2015-01-02T15:59:02
ID CVE-2014-9444
Type cve
Reporter NVD
Modified 2015-01-05T16:17:38

Description

Cross-site scripting (XSS) vulnerability in the Frontend Uploader plugin 0.9.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the errors[fu-disallowed-mime-type][0][name] parameter to the default URI.