0.006 Low
EPSS
Percentile
77.9%
Cross-site scripting (XSS) vulnerability in Press This in WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and 4.x before 4.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
www.openwall.com/lists/oss-security/2014/11/25/12
launchpad.net/bugs/cve/CVE-2014-9035
nvd.nist.gov/vuln/detail/CVE-2014-9035
security-tracker.debian.org/tracker/CVE-2014-9035
wordpress.org/news/2014/11/wordpress-4-0-1/
www.cve.org/CVERecord?id=CVE-2014-9035