MidnightBSD

Advisories for votecount_for_balatarin_project

CVE-2014-4572 MEDIUM

Cross-site scripting (XSS) vulnerability in bvc.php in the Votecount for Balatarin plugin 0.1.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the (1) url or (2) bvcurl parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
votecount_for_balatarin_project votecount_for_balatarin *