CVE-2014-4543 Information
Feb 14, 2021
cve
Description
Multiple cross-site scripting (XSS) vulnerabilities in payper/payper.php in the Pay Per Media Player plugin 1.24 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) fcolor (2) links (3) stitle (4) height (5) width (6) host (7) bcolor (8) msg (9) id or (10) size parameter.
Reference
http://codevigilant.com/disclosure/wp-plugin-pay-per-media-player-a3-cross-site-scripting-xss http://www.securityfocus.com/bid/68447
Share on: