CVE-2014-4606
The ZeenShare WordPress plugin (versions 1.0.1 and earlier) is affected by a Cross-Site Scripting (XSS) vulnerability in the redirect_to_zeenshare.php handler. The issue allows remote attackers to inject arbitrary scripts/HTML by passing a crafted zs_sid parameter. The vulnerability is documented...