Unrated severityNVD Advisory· Published May 27, 2014· Updated Jun 17, 2026
CVE-2014-3870
CVE-2014-3870
Description
Cross-site scripting (XSS) vulnerability in the bib2html plugin 0.9.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the styleShortName parameter in an adminStyleAdd action to OSBiB/create/index.php.
Affected products
2- cpe:2.3:a:bib2html_project:bib2html:0.9.3:*:*:*:*:wordpress:*:*
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.