Lucene search

K

MitreCVELIST:CVE-2014-6315

HistoryOct 10, 2014 - 2:00 p.m.

CVE-2014-6315

2014-10-1014:00:00

mitre

www.cve.org

3

AI Score

5.8

Confidence

High

EPSS

0.008

Percentile

82.2%

Multiple cross-site scripting (XSS) vulnerabilities in the Web-Dorado Photo Gallery plugin 1.1.30 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) callback, (2) dir, or (3) extensions parameter in an addImages action to wp-admin/admin-ajax.php.

References

packetstormsecurity.com/files/128518/WordPress-Photo-Gallery-1.1.30-Cross-Site-Scripting.html

secunia.com/advisories/61649

www.securityfocus.com/archive/1/533595/100/0/threaded

www.securityfocus.com/bid/70204

exchange.xforce.ibmcloud.com/vulnerabilities/96799

plugins.trac.wordpress.org/changeset?new=986500

www.htbridge.com/advisory/HTB23232

AI Score

5.8

Confidence

High

EPSS

0.008

Percentile

82.2%

Related for CVELIST:CVE-2014-6315

htbridge1 packetstorm1 wpvulndb1 cve1 nvd1 zdt1 prion1 securityvulns2 patchstack1