CVE-2014-9179
The CVE-2014-9179 entry concerns the WordPress plugin SupportEzzy Ticket System (version 1.2.5). The vulnerability is an XSS flaw where remote authenticated users can inject arbitrary script/HTML through the "URL (optional)" field when creating a new ticket. This is a concrete vulnerability detai...