Vulnerability Details CVE-2014-9516
Cross-site scripting (XSS) vulnerability in Social Microblogging PRO 1.5 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the default URI, related to the "Web Site" input in the Profile section.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.0%
CVSS Severity
CVSS v2 Score 4.3
References
Products affected by CVE-2014-9516
-
cpe:2.3:a:social_microblogging_pro_project:social_microblogging_pro:1.5