30Mar
CVE-2014-125110 | wp-file-upload Plugin up to 2.4.3 on WordPress lib/wfu_ajaxactions.php wfu_ajax_action_callback cross site scripting
A vulnerability has been found in wp-file-upload Plugin up to 2.4.3 on WordPress and classified as problematic. Affected by this vulnerability is the functionwfu_ajax_action_callback
of the file lib/wfu_ajaxactions.php. The manipulation leads to cross site scripting.
This vulnerability is known as CVE-2014-125110. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.