3 matches found
CVE-2014-9179
Cross-site scripting XSS vulnerability in the SupportEzzy Ticket System plugin 1.2.5 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via the "URL optional" field in a new ticket...
CVE-2014-9179
The CVE-2014-9179 entry concerns the WordPress plugin SupportEzzy Ticket System (version 1.2.5). The vulnerability is an XSS flaw where remote authenticated users can inject arbitrary script/HTML through the "URL (optional)" field when creating a new ticket. This is a concrete vulnerability detai...
CVE-2014-9179
Cross-site scripting XSS vulnerability in the SupportEzzy Ticket System plugin 1.2.5 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via the "URL optional" field in a new ticket...