Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2014-7958
HistoryNov 06, 2014 - 3:55 p.m.

CVE-2014-7958

2014-11-0615:55:08
CWE-79
[email protected]
web.nvd.nist.gov
1

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.7 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.1%

JSON

Cross-site scripting (XSS) vulnerability in admin/htaccess/bpsunlock.php in the BulletProof Security plugin before .51.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the dbhost parameter.

Affected configurations

NVD
Node
ait-probulletproof_securityMatch.44wordpress
OR
ait-probulletproof_securityMatch.44.1wordpress
OR
ait-probulletproof_securityMatch.45wordpress
OR
ait-probulletproof_securityMatch.45.1wordpress
OR
ait-probulletproof_securityMatch.45.2wordpress
OR
ait-probulletproof_securityMatch.45.3wordpress
OR
ait-probulletproof_securityMatch.45.4wordpress
OR
ait-probulletproof_securityMatch.45.5wordpress
OR
ait-probulletproof_securityMatch.45.6wordpress
OR
ait-probulletproof_securityMatch.45.7wordpress
OR
ait-probulletproof_securityMatch.45.8wordpress
OR
ait-probulletproof_securityMatch.45.9wordpress
OR
ait-probulletproof_securityMatch.46wordpress
OR
ait-probulletproof_securityMatch.46.1wordpress
OR
ait-probulletproof_securityMatch.46.2wordpress
OR
ait-probulletproof_securityMatch.46.3wordpress
OR
ait-probulletproof_securityMatch.46.4wordpress
OR
ait-probulletproof_securityMatch.46.5wordpress
OR
ait-probulletproof_securityMatch.46.6wordpress
OR
ait-probulletproof_securityMatch.46.7wordpress
OR
ait-probulletproof_securityMatch.46.8wordpress
OR
ait-probulletproof_securityMatch.46.9wordpress
OR
ait-probulletproof_securityMatch.47wordpress
OR
ait-probulletproof_securityMatch.47.1wordpress
OR
ait-probulletproof_securityMatch.47.2wordpress
OR
ait-probulletproof_securityMatch.47.3wordpress
OR
ait-probulletproof_securityMatch.47.4wordpress
OR
ait-probulletproof_securityMatch.47.5wordpress
OR
ait-probulletproof_securityMatch.47.6wordpress
OR
ait-probulletproof_securityMatch.47.7wordpress
OR
ait-probulletproof_securityMatch.47.8wordpress
OR
ait-probulletproof_securityMatch.47.9wordpress
OR
ait-probulletproof_securityMatch.48wordpress
OR
ait-probulletproof_securityMatch.48.1wordpress
OR
ait-probulletproof_securityMatch.48.2wordpress
OR
ait-probulletproof_securityMatch.48.3wordpress
OR
ait-probulletproof_securityMatch.48.4wordpress
OR
ait-probulletproof_securityMatch.48.5wordpress
OR
ait-probulletproof_securityMatch.48.6wordpress
OR
ait-probulletproof_securityMatch.48.7wordpress
OR
ait-probulletproof_securityMatch.48.8wordpress
OR
ait-probulletproof_securityMatch.48.9wordpress
OR
ait-probulletproof_securityMatch.49wordpress
OR
ait-probulletproof_securityMatch.49.1wordpress
OR
ait-probulletproof_securityMatch.49.2wordpress
OR
ait-probulletproof_securityMatch.49.3wordpress
OR
ait-probulletproof_securityMatch.49.4wordpress
OR
ait-probulletproof_securityMatch.49.5wordpress
OR
ait-probulletproof_securityMatch.49.6wordpress
OR
ait-probulletproof_securityMatch.49.7wordpress
OR
ait-probulletproof_securityMatch.49.8wordpress
OR
ait-probulletproof_securityMatch.49.9wordpress
OR
ait-probulletproof_securityMatch.50wordpress
OR
ait-probulletproof_securityMatch.50.1wordpress
OR
ait-probulletproof_securityMatch.50.2wordpress
OR
ait-probulletproof_securityMatch.50.3wordpress
OR
ait-probulletproof_securityMatch.50.4wordpress
OR
ait-probulletproof_securityMatch.50.5wordpress
OR
ait-probulletproof_securityMatch.50.6wordpress
OR
ait-probulletproof_securityMatch.50.7wordpress
OR
ait-probulletproof_securityMatch.50.8wordpress
OR
ait-probulletproof_securityMatch.50.9wordpress
OR
ait-probulletproof_securityMatch.51wordpress

Related

cvelist 1
cve 1
patchstack 1
prion 1
zdt 1
wpvulndb 1
securityvulns 2
packetstorm 1
cvelist
cvelist
CVE-2014-7958
2014-11-06 15:00:00
cve
cve
CVE-2014-7958
2014-11-06 15:55:08
patchstack
patchstack
WordPress BulletProof Security Plugin <= .51 - XSS
2014-10-07 00:00:00
prion
prion
Cross site scripting
2014-11-06 15:55:00
zdt
zdt
WordPress Bulletproof-Security .51 Multiple Vulnerabilities
2014-11-06 00:00:00
wpvulndb
wpvulndb
BulletProof Security <= .51 - Multiple Vulnerabilities (XSS & SSRF)
2014-11-05 00:00:00
securityvulns
securityvulns
Wordpress bulletproof-security &lt;=.51 multiple vulnerabilities
2014-12-01 00:00:00
Web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;
2014-12-01 00:00:00
packetstorm
packetstorm
WordPress Bulletproof-Security .51 XSS / SQL Injection / SSRF
2014-11-05 00:00:00

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.7 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.1%

JSON
Related for NVD:CVE-2014-7958
cvelist1cve1patchstack1prion1zdt1wpvulndb1securityvulns2packetstorm1