CVE-2014-100027

Currently unrated

Key Information:

Vendor: Wordpress
Status: WP Slimstat
Vendor: CVE Published:; 13 January 2015

Summary

Cross-site scripting (XSS) vulnerability in the WP SlimStat plugin before 3.5.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via a crafted URL.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/91840

vdb-entryx_refsource_XF

https://github.com/getusedtoit/wp-slimstat/issues/3

x_refsource_CONFIRM

http://secunia.com/advisories/57305

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Jan 13, 2015
Vulnerability Reserved
Jan 13, 2015