2 matches found
CVE-2014-4520
Cross-site scripting XSS vulnerability in phprack.php in the DMCA WaterMarker plugin before 1.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the plugindir parameter...
CVE-2014-4520
The DMCA WaterMarker WordPress plugin is affected by CVE-2014-4520: XSS in phprack.php via the plugin_dir parameter in versions before 1.1. Remote attackers can inject arbitrary script/HTML. Documented across NVD, WPVulnDB, and CVE listings. Remediation: update to version 1.1 or apply vendor patc...