2 matches found
CVE-2014-4524
Cross-site scripting XSS vulnerability in classes/custom-image/media.php in the WP Easy Post Types plugin before 1.4.4 for WordPress allows remote attackers to inject arbitrary web script or HTML via the ref parameter...
CVE-2014-4524
CVE-2014-4524 affects the WordPress plugin “WP Easy Post Types” (plugin component: media.php) before version 1.4.4. The vulnerability is a cross-site scripting (XSS) flaw that allows remote attackers to inject arbitrary web script or HTML via the ref parameter. The issue is documented across mult...