CalvinBackup/CVEs-PoC
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2026-06-05 19:06:36 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
8d2c06ff530a083f63fcb31be741f7cf4e4a8d28
CVEs-PoC/2014/CVE-2014-4535.md
T
0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09
2025-09-29 21:09:30 +02:00

19 lines
746 B
Markdown
Raw Blame History

### [CVE-2014-4535](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4535)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brightgreen)
### Description
Cross-site scripting (XSS) vulnerability in the Import Legacy Media plugin 0.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the filename parameter to getid3/demos/demo.mimeonly.php.
### POC
#### Reference
No PoCs from references.
#### Github
- https://github.com/20142995/nuclei-templates
- https://github.com/ARPSyndicate/kenzer-templates
Reference in New Issue View Git Blame Copy Permalink