2 matches found
CVE-2014-4546
Cross-site scripting XSS vulnerability in bookajax.php in the Rezgo plugin 1.4.2 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the response parameter...
CVE-2014-4546
CVE-2014-4546 affects the WordPress Rezgo plugin (versions 1.4.2 and earlier) and is caused by a flaw in a script handling the response parameter within the file book_ajax.php , allowing remote attackers to inject arbitrary web script or HTML (XSS). Affected component: Rezgo WordPress plugin; vul...