CVE-2014-3844
The TinyMCE Color Picker plugin before 1.2 for WordPress does not properly check permissions, which allows remote attackers to modify plugin settings via unspecified vectors. NOTE: some of these details are obtained from third party information.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0019 (0.2%)
Percentil: 40.9%
EPSS: 2026-05-06
Afecta
tinymce:color_pickerwordpress:wordpressDescripción técnica
The TinyMCE Color Picker plugin before 1.2 for WordPress does not properly check permissions, which allows remote attackers to modify plugin settings via unspecified vectors. NOTE: some of these details are obtained from third party information.
Publicada: 22/5/2014, 15:13:05
Última modificación: 6/5/2026, 22:30:45