CVE-2014-5202
CVE-2014-5202 describes a cross-site scripting (XSS) vulnerability in the WordPress plugin Compfight 1.4 . The issue arises in the file compfight-search.php where an attacker can inject arbitrary script/HTML via the search-value parameter. The CVE indicates the vulnerability affects authenticated...