3 matches found
CVE-2014-8622
Cross-site scripting XSS vulnerability in compfight-search.php in the Compfight plugin 1.4 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via the search-value parameter...
CVE-2014-8622
Cross-site scripting XSS vulnerability in compfight-search.php in the Compfight plugin 1.4 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via the search-value parameter...
CVE-2014-8622
CVE-2014-8622 : This vulnerability affects the WordPress Compfight plugin, specifically version 1.4, where the compfight-search.php component is vulnerable to cross-site scripting via the search-value parameter. The issue could allow remote authenticated users to inject arbitrary script or HTML. ...