Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2014-8809
HistoryDec 24, 2014 - 6:00 p.m.

CVE-2014-8809

2014-12-2418:00:00
mitre
www.cve.org
7

AI Score

5.9

Confidence

High

EPSS

0.002

Percentile

55.3%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the WP Symposium plugin before 14.11 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) text parameter in an addComment action to ajax/profile_functions.php, (2) compose_text parameter in a sendMail action to ajax/mail_functions.php, (3) comment parameter in an add_comment action to ajax/lounge_functions.php, or (4) name parameter in a create_album action to ajax/gallery_functions.php.

Related

cve 1
prion 1
patchstack 1
nvd 1
wpvulndb 1
cve
cve
CVE-2014-8809
2014-12-24 18:59:03
prion
prion
Cross site scripting
2014-12-24 18:59:00
patchstack
patchstack
WordPress Symposium Plugin <= 14.10 - Multiple XSS
2014-11-13 00:00:00
nvd
nvd
CVE-2014-8809
2014-12-24 18:59:03
wpvulndb
wpvulndb
WP Symposium <= 14.10 - XSS & SQL Injection
2014-11-26 00:00:00

AI Score

5.9

Confidence

High

EPSS

0.002

Percentile

55.3%

JSON
Related for CVELIST:CVE-2014-8809
cve1prion1patchstack1nvd1wpvulndb1