Lucene search
HistoryNov 25, 2014 - 11:59 p.m.
CVE-2014-9032
cve-2014-9032
cross-site scripting
xss
vulnerability
wordpress
nvd
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.5 Medium
AI Score
Confidence
High
0.007 Low
EPSS
Percentile
80.6%
Cross-site scripting (XSS) vulnerability in the media-playlists feature in WordPress before 3.9.x before 3.9.3 and 4.x before 4.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected configurations
Node
wordpresswordpressMatch3.9
ORwordpresswordpressMatch3.9.1
ORwordpresswordpressMatch3.9.2
ORwordpresswordpressMatch4.0
Related
ubuntucve
ubuntucve
CVE-2014-9032
2014-11-25 00:00:00
debiancve
debiancve
CVE-2014-9032
2014-11-25 23:59:02
prion
prion
Cross site scripting
2014-11-25 23:59:00
patchstack
patchstack
WordPress <= 4.0.0 - XSS #3
2014-11-20 00:00:00
nvd
nvd
CVE-2014-9032
2014-11-25 23:59:02
wpvulndb
wpvulndb
WordPress 3.9, 3.9.1, 3.9.2, 4.0 - XSS in Media Playlists
2014-11-30 19:09:16
cvelist
cvelist
CVE-2014-9032
2014-11-25 23:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: wordpress-4.0.1-1.fc21
2014-12-06 10:12:34
[SECURITY] Fedora 20 Update: wordpress-4.0.1-1.fc20
2014-12-03 01:03:45
[SECURITY] Fedora 19 Update: wordpress-4.0.1-1.fc19
2014-12-03 01:05:40
nessus
nessus
WordPress 3.7 < 3.7.5 / 3.8 < 3.8.5 / 3.9 < 3.9.3 / 4.x < 4.0.1 Multiple Vulnerabilities
2015-03-12 00:00:00
Fedora 21 : wordpress-4.0.1-1.fc21 (2014-15560)
2014-12-07 00:00:00
Fedora 20 : wordpress-4.0.1-1.fc20 (2014-15507)
2014-12-03 00:00:00
securityvulns
securityvulns
[ MDVSA-2014:233 ] wordpress
2014-12-01 00:00:00
openvas
openvas
Fedora Update for wordpress FEDORA-2014-15560
2015-01-05 00:00:00
Mageia: Security Advisory (MGASA-2014-0493)
2022-01-28 00:00:00
Fedora Update for wordpress FEDORA-2014-15507
2014-12-03 00:00:00
mageia
mageia
Updated wordpress package fixes security vulnerabilities
2014-11-26 20:29:06
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.5 Medium
AI Score
Confidence
High
0.007 Low
EPSS
Percentile
80.6%
Related for CVE-2014-9032