Vulnerability Details CVE-2014-100027
Cross-site scripting (XSS) vulnerability in the WP SlimStat plugin before 3.5.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.02
EPSS Ranking 78.5%
CVSS Severity
CVSS v2 Score 4.3
References
- http://secunia.com/advisories/57305
- http://www.securityfocus.com/bid/66146
- https://exchange.xforce.ibmcloud.com/vulnerabilities/91840
- https://github.com/getusedtoit/wp-slimstat/issues/3
- http://secunia.com/advisories/57305
- http://www.securityfocus.com/bid/66146
- https://exchange.xforce.ibmcloud.com/vulnerabilities/91840
- https://github.com/getusedtoit/wp-slimstat/issues/3
Products affected by CVE-2014-100027
-
cpe:2.3:a:getusedtoit:wp_slimstat:3.5.5