Vulnerabilities > Import Legacy Media Project

DATE CVE VULNERABILITY TITLE RISK
2019-12-27 CVE-2014-4535 Cross-site Scripting vulnerability in Import Legacy Media Project Import Legacy Media 0.1
Cross-site scripting (XSS) vulnerability in the Import Legacy Media plugin 0.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the filename parameter to getid3/demos/demo.mimeonly.php.
network
low complexity
import-legacy-media-project CWE-79
6.1