CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2014-4551 – Social Connect <= 0.10.1 - Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2014-4551
25 May 2014 — Cross-site scripting (XSS) vulnerability in diagnostics/test.php in the Social Connect plugin 1.0.4 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the testing parameter. Vulnerabilidad de XSS en iagnostics/test.php en el plugin Socidal Connect 1.0.4 y anteriores para WordPress permite a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a través del parámetro testing. Cross-site scripting (XSS) vulnerability in diagnostics/test.php in the S... • http://codevigilant.com/disclosure/wp-plugin-social-connect-a3-cross-site-scripting-xss • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •