WordPress is the Wordpress Foundation’s suite of blogging platforms developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. WordPress MOLIE plugin has a cross-site scripting vulnerability that stems from not escaping the course_id parameter before exporting it back to the administration dashboard, which can be exploited by attackers to conduct reflective cross-site scripting attacks.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress molie plugin | le | 0.5 |