2 matches found
WordPress dsIDXpress IDX Plugin Cross Site Scripting Vulnerability
WordPress dsIDXpress IDX Plugin is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2014-4521
The CVE-2014-4521 entry concerns WordPress: dsIDXpress IDX Plugin, vulnerable component is client-assist.php. The underlying issue is a cross-site scripting (XSS) flaw that allows an attacker to inject arbitrary script/HTML by supplying a crafted action parameter. Affected version appears to be t...