Multiple cross-site scripting (XSS) vulnerabilities in views/notify.php in the Uploader plugin 1.0.4 for WordPress allow remote malicious users to inject arbitrary web script or HTML via the (1) notify or (2) blog parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
roberta bramski uploader 1.0.4 |