CVE-2014-4589
CVE-2014-4589 affects the WP Silverlight Media Player (wp-media-player) WordPress plugin 0.8 and earlier. The vulnerability resides in uploader.php and is triggered via the post_id parameter, allowing remote attackers to inject arbitrary web script or HTML (XSS). Mitigation: update the plugin to ...