SI CAPTCHA 2.7.4 – Cross-Site Scripting (XSS) | CVE 2014-5190

Affects Plugins

si-captcha-for-wordpress

Fixed in 2.7.6

References

CVE

CVE-2014-5190

URL

https://packetstormsecurity.com/files/#127723/

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

Miscellaneous

Submitter

ethicalhack3r

Submitter twitter

ethicalhack3r

Verified

No

WPVDB ID

7a31ac08-29de-4c0b-ad83-30ce41a8bccc

Timeline

Publicly Published

2014-09-27 (about 11 years ago)

Added

2014-09-27 (about 11 years ago)

Last Updated

2019-10-21 (about 6 years ago)

Other

Published

Title

Published

2023-11-02

Title

Digirisk 6.0.0.0 - Reflected Cross-Site Scripting

Published

2024-08-07

Title

Ultimate Addons for Beaver Builder – Lite < 1.5.10 - Authenticated (Contributor+) Stored Cross-Site Scripting

Published

2023-02-02

Title

Image Hover Effects for Elementor with Lightbox and Flipbox < 3.0 - Reflected XSS

Published

2024-10-22

Title

RSS Feed Widget < 3.0.0 - Contributor+ Stored XSS

Published

2025-03-05

Title

Greek Multi Tool < 2.3.2 - Unauthenticated Stored XSS