Cross-site scripting (XSS) vulnerability in the Polylang plugin before 1.5.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via vectors related to a user description. NOTE: some of these details are obtained from third party information.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2014-07-10T16:00:00Z

Updated: 2024-09-16T18:03:00.794Z

Reserved: 2014-07-10T00:00:00Z

Link: CVE-2014-4855

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2014-07-10T16:55:06.533

Modified: 2024-11-21T02:10:59.690

Link: CVE-2014-4855

cve-icon Redhat

No data.