Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpvulndbEthicalhack3rWPVDB-ID:46A333BB-9825-4885-90A6-A535D367436A
HistoryMay 29, 2015 - 12:00 a.m.

WP Smiley <= 1.4.1 - CSRF & Cross-Site Scripting (XSS)

2015-05-2900:00:00
ethicalhack3r
wpscan.com
14

EPSS

0.004

Percentile

74.3%

JSON

Cross-Site scripting (XSS) in smilies4wp.php in the WP Smiley plugin 1.4.1 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via the s4w-more parameter to wp-admin/options-general.php.

Related

cvelist 2
prion 2
cve 2
patchstack 2
nvd 2
cvelist
cvelist
CVE-2015-4140
2015-06-18 18:00:00
CVE-2015-4139
2015-06-18 18:00:00
prion
prion
Cross site request forgery (csrf)
2015-06-18 18:59:00
Cross site scripting
2015-06-18 18:59:00
cve
cve
CVE-2015-4139
2015-06-18 18:59:02
CVE-2015-4140
2015-06-18 18:59:03
patchstack
patchstack
WordPress WP Smiley Plugin <= 1.4.1 - CSRF
2015-05-31 00:00:00
WordPress WP Smiley Plugin <= 1.4.1 - XSS
2015-05-31 00:00:00
nvd
nvd
CVE-2015-4139
2015-06-18 18:59:02
CVE-2015-4140
2015-06-18 18:59:03

EPSS

0.004

Percentile

74.3%

JSON
Related for WPVDB-ID:46A333BB-9825-4885-90A6-A535D367436A
cvelist2prion2cve2patchstack2nvd2