[WordPress Marketing Performance Plugin](versions 2.0.0 and older) Vulnerability in Cross-Site Scripting (XSS)
Importance (CVSS3.0)
★★★★★★★☆☆☆ 7.1/ 10 - High
Details
A Cross-Site Scripting(XSS) vulnerability was discovered in WordPress Marketing Performance Plugin.
Because of this vulnerability, malicious attackers can inject fraudulent scripts such as redirect, ads, and other HTML payloads. This may be executed when guests visit the websites.
This vulnerability hasn’t been fixed yet.
Solutions
Disable and delete
Source
We provide information about critical vulnerabilities of WordPress for people who are using or are considering using Wordpress for their projects.
“[WordPress Marketing Performance Plugin](versions 2.0.0 and older) Vulnerability in Cross-Site Scripting (XSS) ”, by WS Security is licensed under CC BY 4.0.
Comentarii