VDB

DEBIAN-CVE-2014-9032

DEBIAN-CVE-2014-9032 PUBLISHED CVSS 9.300000190734863 CRITICAL

Cross-site scripting (XSS) vulnerability in the media-playlists feature in WordPress before 3.9.x before 3.9.3 and 4.x before 4.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Risk Scores

CVSS 4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

Affected Products

VendorProductVersions
Debian:11wordpress0, 0, 0
Debian:14wordpress0
Debian:13wordpress0, 0, 0
Debian:12wordpress0, 0, 0

Timeline

  • Nov 25, 2014 CVE Published
  • May 7, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›