WordPress is a set of blogging platforms developed using the PHP language by the WordPress (Wordpress) Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. cross-site scripting vulnerability exists in versions of the Easy Forms for Mailchimp plugin for WordPress prior to 6.8.6, which stems from the field name and field type parameters not being cleaned up and escaped before being output back to the property. An attacker could exploit this vulnerability to execute JavaScript code on the client side.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress easy forms for mailchimp plugin | lt | 6.8.6 |