CVE-2014-4545

2014-07-0114:00:00

mitre

www.cve.org

AI Score

5.9

Confidence

High

EPSS

0.002

Percentile

52.6%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in pq_dialog.php in the Pro Quoter plugin 1.0 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) leftorright or (2) author parameter.

References

codevigilant.com/disclosure/wp-plugin-proquoter-a3-cross-site-scripting-xss

www.securityfocus.com/bid/68318