2 matches found
CVE-2014-9094
CVE-2014-9094 affects the WordPress DZS-VideoGallery / Digital Zoom Studio Video Gallery plugin. It describes multiple XSS vulnerabilities in deploy/designer/preview.php, exploitable via the swfloc and designrand parameters, allowing remote attackers to inject arbitrary JavaScript in the victim’s...
CVE-2014-3923
The CVE-2014-3923 issue affects the WordPress plugin DZS Video Gallery . It involves Multiple XSS vulnerabilities in the deploy/ previews (preview.swf, preview_skin_rouge.swf, preview_allchars.swf, preview_skin_overlay.swf) where an attacker can inject arbitrary web script or HTML via the logoLin...