Lucene search

K

MitreCVELIST:CVE-2019-14795

HistoryAug 15, 2019 - 2:55 p.m.

CVE-2019-14795

2019-08-1514:55:44

mitre

www.cve.org

2

EPSS

0.001

Percentile

26.0%

The toggle-the-title (aka Toggle The Title) plugin 1.4 for WordPress has XSS via the wp-admin/admin-ajax.php?action=update_title_options isAutoSaveValveChecked or isDisableAllPagesValveChecked parameter.

References

wordpress.org/plugins/toggle-the-title/#developers

wpvulndb.com/vulnerabilities/9516

www.pluginvulnerabilities.com/2019/05/16/is-this-authenticated-persistent-cross-site-scripting-xss-vulnerability-what-hackers-would-be-interested-in-toggle-the-title-for/

EPSS

0.001

Percentile

26.0%

Related for CVELIST:CVE-2019-14795

prion1 wpvulndb1 nvd1 cve1