CVE-2014-4848
WordPress Blogstand Banner <1.0 - XSS
Title source: llmDescription
Cross-site scripting (XSS) vulnerability in the Blogstand Banner (blogstand-smart-banner) plugin 1.0 for WordPress allows remote attackers to inject arbitrary web script or HTML via the bs_blog_id parameter to wp-admin/options-general.php.
Scores
EPSS
0.0024
EPSS Percentile
46.8%
Details
CWE
CWE-79
Status
published
Products (2)
blogstand_banner_plugin_project/blogstand-smart-banner
n/a/n/a
Published
Jul 10, 2014
Tracked Since
Feb 18, 2026