Unrated severityNVD Advisory· Published Jul 2, 2014· Updated May 6, 2026
CVE-2014-4597
CVE-2014-4597
Description
Cross-site scripting (XSS) vulnerability in test.php in the WP Social Invitations plugin before 1.4.4.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the xhrurl parameter.
Affected products
1- cpe:2.3:a:wp_social_invitations_project:wp_social_invitations:*:-:-:*:-:wordpress:*:*Range: <=1.4.4.2
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2News mentions
0No linked articles in our index yet.