3 matches found
CVE-2014-4555
Cross-site scripting XSS vulnerability in fonts/font-form.php in the Style It plugin 1.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the mode parameter...
CVE-2014-4555
Cross-site scripting XSS vulnerability in fonts/font-form.php in the Style It plugin 1.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the mode parameter...
CVE-2014-4555
CVE-2014-4555 is an XSS vulnerability in the WordPress plugin Style It (versions 1.0 and earlier). The flaw exists in fonts/font-form.php and allows remote attackers to inject arbitrary JavaScript/HTML via the mode parameter. Exploitation status is not detailed in the provided documents, but mult...