Vulnerability CVE-2014-4549

Vulnerability CVE-2014-4549

Published: 2014-07-02 Modified: 2014-07-03

Description:

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.3/10	2.9/10	8.6/10

Affected software
Woocommerce sagepay direct payment gateway project -> Woocommerce sagepay direct payment gateway

http://wordpress.org/plugins/sagepay-direct-for-woocommerce-payment-gateway/changelog

https://github.com/wp-plugins/sagepay-direct-for-woocommerce-payment-gateway/commit/9c6cf939c6c25377c285439b92ef2bb5ebda9db6

http://www.securityfocus.com/bid/65355

http://codevigilant.com/disclosure/wp-plugin-sagepay-direct-for-woocommerce-payment-gateway-a3-cross-site-scripting-xss