Skip to content

CVE-2014-3870

Cross-site scripting (XSS) vulnerability in the bib2html plugin 0.9.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the styleShortName parameter in an adminStyleAdd action to OSBiB/create/index.php.

View on NVD

Severity

N/A

EPSS

Probability of exploitation (next 30 days): 0.0017 (0.2%)
Percentile: 38.4%
EPSS: 2026-05-06

Affects

bib2html_project:bib2html

Technical description

Cross-site scripting (XSS) vulnerability in the bib2html plugin 0.9.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the styleShortName parameter in an adminStyleAdd action to OSBiB/create/index.php.

Published: 5/27/2014, 1:55:06 PM
Last modified: 5/6/2026, 10:30:45 PM

References

HomeEventsBlogResourcesTeam