Lucene search
Anant ShrivastavaPATCHSTACK:EE22420EC6980E5D4EF75C5C1AECE9D1HistoryJun 23, 2014 - 12:00 a.m.
WordPress WP FaceThumb Plugin <= 1.0 - XSS
2014-06-2300:00:00
Anant Shrivastava
patchstack.com
9
0.001 Low
EPSS
Percentile
50.0%
Because of this vulnerability, the attackers can inject arbitrary web script or HTML via the “ajax_url” parameter to index.php.
Solution
Update the plugin.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wp facethumb | le | 1.0 |
Related
cve
cve
CVE-2014-4585
2014-07-01 14:55:05
nvd
nvd
CVE-2014-4585
2014-07-01 14:55:05
cvelist
cvelist
CVE-2014-4585
2014-07-01 14:00:00
prion
prion
Cross site scripting
2014-07-01 14:55:00
wpvulndb
wpvulndb
WP-Facethumb Gallery <= 0.1 - Reflected Cross Site Scripting
2012-05-13 00:00:00