4 matches found
WordPress AnyFont plugin 'text' Parameter Cross Site Scripting Vulnerability
WordPress AnyFont Plugin is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2014-4515
Cross-site scripting XSS vulnerability in mceanyfont/dialog.php in the AnyFont plugin 2.2.3 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the text parameter...
CVE-2014-4515
Cross-site scripting XSS vulnerability in mceanyfont/dialog.php in the AnyFont plugin 2.2.3 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the text parameter...
CVE-2014-4515
The CVE-2014-4515 vulnerability affects the WordPress AnyFont plugin (mce_anyfont/dialog.php) and is caused by a cross-site scripting flaw in the text parameter, impacting version 2.2.3 and earlier. The vulnerability allows remote attackers to inject arbitrary JavaScript/HTML. Public documents de...