CVE-2014-4591
WP-Picasa-Image <1.0 - XSS
Title source: llmDescription
Cross-site scripting (XSS) vulnerability in picasa_upload.php in the WP-Picasa-Image plugin 1.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the post_id parameter.
Scores
EPSS
0.0017
EPSS Percentile
38.7%
Details
CWE
CWE-79
Status
published
Products (2)
wp_picasa_image_project/wp_picasa_image
< 1.0
n/a/n/a
Published
Jul 02, 2014
Tracked Since
Feb 18, 2026