2 matches found
CVE-2014-3923
Multiple cross-site scripting XSS vulnerabilities in the Digital Zoom Studio DZS Video Gallery plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the logoLink parameter to 1 preview.swf, 2 previewskinrouge.swf, 3 previewallchars.swf, or 4 previewskinoverlay.swf...
CVE-2014-3923
The CVE-2014-3923 issue affects the WordPress plugin DZS Video Gallery . It involves Multiple XSS vulnerabilities in the deploy/ previews (preview.swf, preview_skin_rouge.swf, preview_allchars.swf, preview_skin_overlay.swf) where an attacker can inject arbitrary web script or HTML via the logoLin...