MidnightBSD

Advisories for wp_social_invitations_project

CVE-2014-4597 MEDIUM

Cross-site scripting (XSS) vulnerability in test.php in the WP Social Invitations plugin before 1.4.4.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the xhrurl parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
wp_social_invitations_project wp_social_invitations *