0.008 Low
EPSS
Percentile
81.9%
Cross-site scripting (XSS) vulnerability in assets/player.swf in the Audio Player plugin before 2.0.4.6 for Wordpress allows remote attackers to inject arbitrary web script or HTML via the playerID parameter.
typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-002/
launchpad.net/bugs/cve/CVE-2013-1464
nvd.nist.gov/vuln/detail/CVE-2013-1464
security-tracker.debian.org/tracker/CVE-2013-1464
www.cve.org/CVERecord?id=CVE-2013-1464