2 matches found
CVE-2015-1366
Cross-site scripting XSS vulnerability in pixabay-images.php in the Pixabay Images plugin before 2.4 for WordPress allows remote attackers to inject arbitrary web script or HTML via the imageuser parameter...
CVE-2015-1366
CVE-2015-1366 concerns a Cross-Site Scripting vulnerability in the WordPress plugin “Pixabay Images” (pixabay-images.php) prior to version 2.4. The flaw allows remote attackers to inject arbitrary web script or HTML through the image_user parameter, due to insufficient input sanitization. Affecte...