CVE-2014-4589
WP Silverlight Media Player <0.8 - XSS
Title source: llmDescription
Cross-site scripting (XSS) vulnerability in uploader.php in the WP Silverlight Media Player (wp-media-player) plugin 0.8 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the post_id parameter.
Scores
EPSS
0.0017
EPSS Percentile
38.7%
Details
CWE
CWE-79
Status
published
Products (2)
wp_silverlight_media_player_project/wp_silverlight_media_player
< 0.8
n/a/n/a
Published
Jul 02, 2014
Tracked Since
Feb 18, 2026