Multiple cross-site scripting (XSS) vulnerabilities in views/notify.php in the Uploader plugin 1.0.4 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) notify or (2) blog parameter.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2014-04-04T14:00:00

Updated: 2024-08-06T15:36:44.452Z

Reserved: 2013-02-26T00:00:00

Link: CVE-2013-2287

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2014-04-04T14:55:11.307

Modified: 2014-04-04T16:01:25.037

Link: CVE-2013-2287

cve-icon Redhat

No data.