CVE-2014-10394
The rich-counter plugin before 1.2.0 for WordPress has JavaScript injection via a User-Agent header.
6.1CVSS
6.5AI Score
0.001EPSS