CVE-2014-3842
Imember360 - XSS
Title source: ruleDescription
Multiple cross-site scripting (XSS) vulnerabilities in the iMember360 plugin 3.8.012 through 3.9.001 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) decrypt or (2) encrypt parameter.
Exploits (1)
References (5)
Scores
EPSS
0.0208
EPSS Percentile
83.8%
Details
CWE
CWE-79
Status
published
Products (6)
imember360/imember360
imember360/imember360
imember360/imember360
imember360/imember360
imember360/imember360
n/a/n/a
Published
May 22, 2014
Tracked Since
Feb 18, 2026