Lucene search
+L

61 matches found

Tenable Nessus
Tenable Nessus
added 2018/11/05 12:0 a.m.36 views

WordPress 4.4.x < 4.4.14 MediaElement.js Flash Fallback XSS

According to its self-reported version number, the detected WordPress application is affected by a cross-site scripting vulnerability in the Flash fallback files in MediaElement under wp-includes/js/mediaelement. Note that the scanner has not tested for these issues but has instead relied only on...

6.1CVSS6.6AI score0.02404EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/11/05 12:0 a.m.28 views

WordPress 4.1.x < 4.1.22 MediaElement.js Flash Fallback XSS

According to its self-reported version number, the detected WordPress application is affected by a cross-site scripting vulnerability in the Flash fallback files in MediaElement under wp-includes/js/mediaelement. Note that the scanner has not tested for these issues but has instead relied only on...

6.1CVSS6.6AI score0.02404EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/11/05 12:0 a.m.9 views

WordPress 3.8.x < 3.8.25 MediaElement.js Flash Fallback XSS

According to its self-reported version number, the detected WordPress application is affected by a cross-site scripting vulnerability in the Flash fallback files in MediaElement under wp-includes/js/mediaelement. Note that the scanner has not tested for these issues but has instead relied only on...

6.1CVSS6.6AI score0.02404EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/11/05 12:0 a.m.34 views

WordPress 4.3.x < 4.3.15 MediaElement.js Flash Fallback XSS

According to its self-reported version number, the detected WordPress application is affected by a cross-site scripting vulnerability in the Flash fallback files in MediaElement under wp-includes/js/mediaelement. Note that the scanner has not tested for these issues but has instead relied only on...

6.1CVSS6.6AI score0.02404EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/11/05 12:0 a.m.17 views

WordPress 4.6.x < 4.6.10 MediaElement.js Flash Fallback XSS

According to its self-reported version number, the detected WordPress application is affected by a cross-site scripting vulnerability in the Flash fallback files in MediaElement under wp-includes/js/mediaelement. Note that the scanner has not tested for these issues but has instead relied only on...

6.1CVSS6.6AI score0.02404EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/11/05 12:0 a.m.17 views

WordPress 4.8.x < 4.8.5 MediaElement.js Flash Fallback XSS

According to its self-reported version number, the detected WordPress application is affected by a cross-site scripting vulnerability in the Flash fallback files in MediaElement under wp-includes/js/mediaelement. Note that the scanner has not tested for these issues but has instead relied only on...

6.1CVSS6.6AI score0.02404EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/11/05 12:0 a.m.11 views

WordPress 4.2.x < 4.2.19 MediaElement.js Flash Fallback XSS

According to its self-reported version number, the detected WordPress application is affected by a cross-site scripting vulnerability in the Flash fallback files in MediaElement under wp-includes/js/mediaelement. Note that the scanner has not tested for these issues but has instead relied only on...

6.1CVSS6.6AI score0.02404EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/11/05 12:0 a.m.10 views

WordPress 3.9.x < 3.9.23 MediaElement.js Flash Fallback XSS

According to its self-reported version number, the detected WordPress application is affected by a cross-site scripting vulnerability in the Flash fallback files in MediaElement under wp-includes/js/mediaelement. Note that the scanner has not tested for these issues but has instead relied only on...

6.1CVSS6.6AI score0.02404EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/11/05 12:0 a.m.19 views

WordPress 3.7.x < 3.7.25 MediaElement.js Flash Fallback XSS

According to its self-reported version number, the detected WordPress application is affected by a cross-site scripting vulnerability in the Flash fallback files in MediaElement under wp-includes/js/mediaelement. Note that the scanner has not tested for these issues but has instead relied only on...

6.1CVSS6.6AI score0.02404EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/11/05 12:0 a.m.20 views

WordPress 4.5.x < 4.5.13 MediaElement.js Flash Fallback XSS

According to its self-reported version number, the detected WordPress application is affected by a cross-site scripting vulnerability in the Flash fallback files in MediaElement under wp-includes/js/mediaelement. Note that the scanner has not tested for these issues but has instead relied only on...

6.1CVSS6.6AI score0.02404EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/01/24 12:0 a.m.75 views

WordPress < 4.9.2 MediaElement.js Flash Fallback XSS

According to its self-reported version number, the WordPress application running on the remote web server is prior to 4.9.2. It is, therefore, affected by a cross-site scripting vulnerability. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid106304; scriptversion"1.11"...

6.1CVSS5.8AI score0.02404EPSS
Exploits0References2
Hacker One
Hacker One
added 2016/07/30 1:34 a.m.21 views

Zomato: Outdated MediaElement.js Reflected Cross-Site Scripting (XSS)

I took a quick look at the business-blog.zomato.com wordpress installation, and found that it was quite outdated. Version 4.2.4 as far as I could tell A pretty famous XSS attack exists for Wordpress versions below 4.5.2 that allows for reflected cross site scripting. More details can be found her...

5.9AI score
Exploits0
Friends Of PHP
Friends Of PHP
added 2016/07/15 8:22 a.m.35 views

Cross-site scripting (XSS) vulnerability in flashmediaelement.swf in MediaElement.js before 2.11.2 (see CVE-2013-1967)

More info at https://contao.org/en/news/contao-3515.html...

4.3CVSS6.8AI score0.02214EPSS
Exploits1Affected Software1
Friends Of PHP
Friends Of PHP
added 2016/07/14 1:33 p.m.80 views

Cross-site scripting (XSS) vulnerability in flashmediaelement.swf in MediaElement.js before 2.11.2 (see CVE-2013-1967)

More info at https://contao.org/en/news/contao-3515.html...

4.3CVSS6.6AI score0.06405EPSS
Exploits1Affected Software1
Friends Of PHP
Friends Of PHP
added 2016/07/14 1:33 p.m.50 views

Cross-site scripting (XSS) vulnerability in flashmediaelement.swf in MediaElement.js before 2.11.2 (see CVE-2013-1967)

More info at https://contao.org/en/news/contao-3515.html...

4.3CVSS6.8AI score0.02214EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/07/07 12:0 a.m.21 views

WordPress < 4.5.2 Multiple Vulnerabilities (ImageTragick)

Binary data 9387.prm...

10CVSS7.3AI score0.97485EPSS
Exploits13References8
NVD
NVD
added 2016/05/22 1:59 a.m.21 views

CVE-2016-4567

Cross-site scripting XSS vulnerability in flash/FlashMediaElement.as in MediaElement.js before 2.21.0, as used in WordPress before 4.5.2, allows remote attackers to inject arbitrary web script or HTML via an obfuscated form of the jsinitfunction parameter, as demonstrated by "jsinitfunctio%gn."...

6.1CVSS6.2AI score0.06405EPSS
Exploits0References9
OSV
OSV
added 2016/05/22 1:59 a.m.11 views

CVE-2016-4567

Cross-site scripting XSS vulnerability in flash/FlashMediaElement.as in MediaElement.js before 2.21.0, as used in WordPress before 4.5.2, allows remote attackers to inject arbitrary web script or HTML via an obfuscated form of the jsinitfunction parameter, as demonstrated by "jsinitfunctio%gn."...

6.1CVSS6AI score
Exploits0References9
OSV
OSV
added 2016/05/22 1:59 a.m.2 views

DEBIAN-CVE-2016-4567

Cross-site scripting XSS vulnerability in flash/FlashMediaElement.as in MediaElement.js before 2.21.0, as used in WordPress before 4.5.2, allows remote attackers to inject arbitrary web script or HTML via an obfuscated form of the jsinitfunction parameter, as demonstrated by "jsinitfunctio%gn."...

6.1CVSS6AI score0.06405EPSS
Exploits0References1
Prion
Prion
added 2016/05/22 1:59 a.m.24 views

Cross site scripting

Cross-site scripting XSS vulnerability in flash/FlashMediaElement.as in MediaElement.js before 2.21.0, as used in WordPress before 4.5.2, allows remote attackers to inject arbitrary web script or HTML via an obfuscated form of the jsinitfunction parameter, as demonstrated by "jsinitfunctio%gn."...

4.3CVSS6AI score0.06405EPSS
Exploits0References9Affected Software2
Rows per page
Query Builder