.. / CVE-2014-9444

Exploit for Frontend Uploader <= 0.9.2 - Cross-Site Scripting (CVE-2014-9444)

Description:

The Frontend Uploader WordPress plugin prior to v.0.9.2 was affected by an unauthenticated Cross-Site Scripting security vulnerability.

Nuclei Template

View the template here CVE-2014-9444.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2014/CVE-2014-9444.yaml
Copy

References:

https://nvd.nist.gov/vuln/detail/CVE-2014-9444
https://github.com/ARPSyndicate/kenzer-templates
http://packetstormsecurity.com/files/129749/WordPress-Frontend-Uploader-0.9.2-Cross-Site-Scripting.html
https://wpscan.com/vulnerability/f0739b1e-22dc-4ca6-ad83-a0e80228e3c7