CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Ewww Image Optimizer Plugin Project: >> Ewww Image Optimizer Plugin Security Vulnerabilities

CVE-2014-6243

Cross-site scripting (XSS) vulnerability in the EWWW Image Optimizer plugin before 2.0.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the error parameter in the ewww-image-optimizer.php page to wp-admin/options-general.php, which is not properly handled in a pngout error message.

CVSS Score

4.3

EPSS Score

0.002

Published

2014-10-10

Page 1

Vulnerabilities

Vulnerable Software

Ewww Image Optimizer Plugin Project: >> Ewww Image Optimizer Plugin Security Vulnerabilities

Products

Pricing

Contact Us