[WordPress VK All in One Expansion Unit Plugin](versions 126.96.36.199 and older) Vulnerability to Cross-Site Scripting (XSS)
★★★★★★★☆☆☆ 7.1/ 10 - High
A Cross-Site Scripting (XSS) vulnerability was discovered in WordPress VK All in One Expansion Unit Plugin.
This vulnerability allows malicious attackers to inject fraudulent scripts such as redirect, ads, and other HTML payload. This may be executed when guests visit the website.
Update the WordPress VK All in One Expansion Unit Plugin to the newest version (188.8.131.52 and newer).
We provide information about critical vulnerabilities of WordPress for people who are using or are considering using Wordpress for their projects.