WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress WP Admin Style plugin version 0.1.2 and prior versions contain a cross-site scripting vulnerability that stems from the plugin’s failure to clean up and escape certain of its settings. An attacker could exploit this vulnerability to execute a stored cross-site scripting attack when the unfiltered_html feature is disabled.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress wp admin style plugin | le | 0.1.2 |