2 matches found
CVE-2014-4528
Multiple cross-site scripting XSS vulnerabilities in admin/swarm-settings.php in the Bugs Go Viral : Facebook Promotion Generator fbpromotions plugin 1.3.4 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 promotype, 2 fbeditaction, or 3 promoid...
CVE-2014-4528
Affected software: WordPress plugin “Bugs Go Viral: Facebook Promotion Generator” (fbpromotions)