Cross-site scripting (XSS) vulnerability in the Import Legacy Media plugin 0.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the filename parameter to getid3/demos/demo.mimeonly.php.
https://codevigilant.com/disclosure/wp-plugin-import-legacy-media-a3-cross-site-scripting-xss/
Publikované: 04.25 2014
Upravené: 12.28 2019
CVE: CVE-2014-4535
Websafe s.r.o,
Pribinova 41
942 01 Šurany
IČO: 46 841 407