Lucene search
Anant ShrivastavaPATCHSTACK:100C5A73B7D20E7BEE3C2AC336FC16F4HistoryJun 23, 2014 - 12:00 a.m.
WordPress ZdStatistics Plugin <= 2.0.1 - XSS
2014-06-2300:00:00
Anant Shrivastava
patchstack.com
5
0.001 Low
EPSS
Percentile
49.8%
Because of this vulnerability in cal/test.php, the attackers can inject arbitrary web script or HTML via the “lang” parameter.
Solution
Update the plugin.
| CPE | Name | Operator | Version |
|---|---|---|---|
| zdstatistics | le | 2.0.1 |
Related
prion
prion
Cross site scripting
2014-07-02 18:55:00
cve
cve
CVE-2014-4605
2014-07-02 18:55:11
wpvulndb
wpvulndb
ZdStatistics < 2.0.1 - Cross-Site Scripting (XSS)
2014-08-01 10:59:16
cvelist
cvelist
CVE-2014-4605
2014-07-02 18:00:00
nvd
nvd
CVE-2014-4605
2014-07-02 18:55:11