2 matches found
CVE-2014-4596
Multiple cross-site scripting XSS vulnerabilities in js/button-snapapp.php in the SnapApp plugin 1.5 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 msg or 2 act parameter...
CVE-2014-4596
The CVE-2014-4596 entries describe multiple XSS vulnerabilities in the WordPress plugin SnapApp (plugin version ≤ 1.5) within the file js/button-snapapp.php . The vulnerability allows remote attackers to inject arbitrary web script or HTML by manipulating the msg or act parameters. The NVD/NVD-de...