CVE-2014-125110 | wp-file-upload Plugin up to 2.4.3 on WordPress lib/wfu_ajaxactions.php wfu_ajax_action_callback cross site scripting

Inserito da Angelo Barbosa | Mar 30, 2024 | CVE

A vulnerability has been found in wp-file-upload Plugin up to 2.4.3 on WordPress and classified as problematic. Affected by this vulnerability is the function wfu_ajax_action_callback of the file lib/wfu_ajaxactions.php. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2014-125110. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2014-125110 | wp-file-upload Plugin up to 2.4.3 on WordPress lib/wfu_ajaxactions.php wfu_ajax_action_callback cross site scripting

Post correlati

CVE-2024-25512 | RuvarOA 6.01/12.01 AttachDownLoad.aspx attach_id sql injection

CVE-2024-32004 | Git Cloning process control (GHSA-xfc6-vwr8-r389)

CVE-2023-25785 | Shoaib Saleem WP Post Rating Plugin up to 2.5 on WordPress authorization

CVE-2024-2274 | Bdtask G-Prescription Gynaecology & OBS Consultation Software Prescription Dashboard /Home/Index cross site scripting