CVE-2014-8584
Published Nov 4, 2014
Last updated 5 months ago
AI description
CVE-2014-8584 is a cross-site scripting (XSS) vulnerability found in the Web Dorado Spider Video Player plugin before version 1.5.2 for WordPress. This vulnerability allows remote attackers to inject arbitrary web script or HTML through unspecified vectors. Successful exploitation of this vulnerability could allow an attacker to insert malicious script into the client-side HTML, potentially revealing a victim's cookies or executing arbitrary script in their browser.
- Description
- Cross-site scripting (XSS) vulnerability in the Web Dorado Spider Video Player (aka WordPress Video Player) plugin before 1.5.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
- Source
- cve@mitre.org
- NVD status
- Deferred
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:P/A:N
- nvd@nist.gov
- CWE-79
- Hype score
- Not currently trending
CVE-2024-8440这个能够直接提权的漏洞外,sandboxescaper还公布了两个越权删除任意文件的EXP(CVE-2014-8584)和一个越权读取任意文件的EXP。12月份公布的后两个漏洞虽然也是Windows中的逻辑问题,但是与RPC无关。 技术联系
@Ii6Roun7
31 Aug 2025
2595 Impressions
0 Retweets
44 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-8440这个能够直接提权的漏洞外,sandboxescaper还公布了两个越权删除任意文件的EXP(CVE-2014-8584)和一个越权读取任意文件的EXP。 12月份公布的后两个漏洞虽然也是Windows中的逻辑问题,但是与RPC无关。 https://t.co
@JoiR666
29 Aug 2025
2401 Impressions
0 Retweets
65 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:web-dorado:web-dorado_spider_video_player:1.4.7:*:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "73CFC809-4962-4898-918A-6F536A7C89B2"
},
{
"criteria": "cpe:2.3:a:web-dorado:web-dorado_spider_video_player:1.4.8:*:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "C284C9B9-B111-41A6-AFF9-97D787A6EC7B"
},
{
"criteria": "cpe:2.3:a:web-dorado:web-dorado_spider_video_player:1.4.9:*:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "0002DD12-127A-49FA-93BF-0156EA5B1681"
},
{
"criteria": "cpe:2.3:a:web-dorado:web-dorado_spider_video_player:1.5:*:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "8E5211A7-9AB1-461F-8574-6320DA6A7448"
},
{
"criteria": "cpe:2.3:a:web-dorado:web-dorado_spider_video_player:1.5.1:*:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "FD12BDDE-B5ED-4FF3-B671-3A2C1D2B36D6"
}
],
"operator": "OR"
}
]
}
]