Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackAshiyane Digital Security TeamPATCHSTACK:7D3A042FF0DA37B8F1037288980CC8EC
HistoryJul 10, 2014 - 12:00 a.m.

WordPress WP Construction Mode Plugin <= 1.8 - XSS

2014-07-1000:00:00
Ashiyane Digital Security Team
patchstack.com
7

0.002 Low

EPSS

Percentile

61.1%

JSON

Because of this vulnerability, the attackers can inject arbitrary web script or HTML via the “wuc_logo” parameter in a save action to wp-admin/admin.php.

Solution

           Update the plugin.
CPENameOperatorVersion
wp construction modele1.8

Related

prion 1
cvelist 1
wpvulndb 1
nvd 1
cve 1
prion
prion
Cross site scripting
2014-07-10 16:55:00
cvelist
cvelist
CVE-2014-4854
2014-07-10 16:00:00
wpvulndb
wpvulndb
Construction Mode 1.8 - under-construction.php wuc_logo Parameter XSS
2014-08-01 10:59:16
nvd
nvd
CVE-2014-4854
2014-07-10 16:55:06
cve
cve
CVE-2014-4854
2014-07-10 16:55:06

0.002 Low

EPSS

Percentile

61.1%

JSON
Related for PATCHSTACK:7D3A042FF0DA37B8F1037288980CC8EC
prion1cvelist1wpvulndb1nvd1cve1