Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:52 p.m.8 views

CVE-2014-4855

Cross-site scripting XSS vulnerability in the Polylang plugin before 1.5.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via vectors related to a user description. NOTE: some of these details are obtained from third party information...

4.3CVSS5.9AI score0.01578EPSS
Exploits0References1
NVD
NVD
added 2014/07/10 4:55 p.m.19 views

CVE-2014-4855

Cross-site scripting XSS vulnerability in the Polylang plugin before 1.5.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via vectors related to a user description. NOTE: some of these details are obtained from third party information...

4.3CVSS5.7AI score0.01578EPSS
Exploits0References2
Cvelist
Cvelist
added 2014/07/10 4:0 p.m.28 views

CVE-2014-4855

Cross-site scripting XSS vulnerability in the Polylang plugin before 1.5.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via vectors related to a user description. NOTE: some of these details are obtained from third party information...

5.7AI score0.01578EPSS
Exploits0References2
CVE
CVE
added 2014/07/10 4:0 p.m.40 views

CVE-2014-4855

Polylang WordPress plugin (before 1.5.2) is affected by a stored XSS via the user description field. The vulnerability allows remote injection of script/HTML; affected component is the Polylang plugin for WordPress, prior to version 1.5.2. Remediation observed in sources is to update to 1.5.2 or ...

4.3CVSS5.9AI score0.01578EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder