WordPress is the Wordpress Foundation’s suite of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress WP Event Manager has a cross-site scripting vulnerability that stems from the plugin’s failure to escape output fields when they are set in the editor, which can be exploited by attackers to perform cross-site scripting attacks.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress wp event manager | lt | 3.1.23 |