Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackMustLivePATCHSTACK:A71572E084BD56D6D844F38023074766
HistoryJul 13, 2014 - 12:00 a.m.

WordPress DZS Video Gallery Plugin - Cross Site Scripting and Command Injection Vulnerabilities

2014-07-1300:00:00
MustLive
patchstack.com
9

0.259 Low

EPSS

Percentile

96.7%

JSON

Because of these vulnerabilities in DZS Video Gallery plugin, an attacker can execute arbitrary script code in the browser and execute arbitrary OS commands. In that way an attacker can steal cookie-based authentication credentials and launch other attacks.

Solution

           Upgrade the plugin.
CPENameOperatorVersion
dzs video galleryle7.85

Related

nuclei 1
cve 1
cvelist 1
wpvulndb 1
prion 1
nvd 1
patchstack 1
openvas 1
nuclei
nuclei
WordPress DZS-VideoGallery Plugin Cross-Site Scripting
2021-07-11 01:43:01
cve
cve
CVE-2014-9094
2014-11-26 15:59:10
cvelist
cvelist
CVE-2014-9094
2014-11-26 15:00:00
wpvulndb
wpvulndb
DZS Video Gallery Plugin - RCE & More
2014-09-27 12:04:59
prion
prion
Cross site scripting
2014-11-26 15:59:00
nvd
nvd
CVE-2014-9094
2014-11-26 15:59:10
patchstack
patchstack
WordPress Digital Zoom Studio Plugin - XSS
2014-11-26 00:00:00
openvas
openvas
WordPress Digital Zoom Studio (DZS) Video Gallery Plugin Multiple Vulnerabilities
2014-11-28 00:00:00

0.259 Low

EPSS

Percentile

96.7%

JSON
Related for PATCHSTACK:A71572E084BD56D6D844F38023074766
nuclei1cve1cvelist1wpvulndb1prion1nvd1patchstack1openvas1