Skip to content

CVE-2014-4575

Cross-site scripting (XSS) vulnerability in js/window.php in the Wikipop plugin 2.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter.

Ver en NVD

Severidad

N/A

EPSS

Probabilidad de explotación (próx. 30 días): 0.0017 (0.2%)
Percentil: 38.4%
EPSS: 2026-05-06

Afecta

wikipop_plugin_project:wikipop

Descripción técnica

Cross-site scripting (XSS) vulnerability in js/window.php in the Wikipop plugin 2.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter.

Publicada: 1/7/2014, 14:55:05
Última modificación: 6/5/2026, 22:30:45

Referencias

InicioEventosBlogRecursosEquipo