2 matches found
CVE-2015-9349
The ckeditor-for-wordpress plugin before 4.5.3.1 for WordPress has reflected XSS in the "built-in old" file browser...
CVE-2015-9349
The vulnerability CVE-2015-9349 affects the WordPress ckeditor-for-wordpress plugin prior to 4.5.3.1, where the built-in (old) file browser exposes a reflected XSS due to insufficient validation of client-side data. Root cause: lack of proper input validation in the web application. Impact: user-...