WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plug-in. A cross-site scripting vulnerability exists in versions of the WordPress Awin Data Feed plugin prior to 1.8, which stems from a failure to clean up and escape headers when processing requests that generate analytics data. The vulnerability can be exploited to perform cross-site scripting attacks.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress awin data feed plugin | lt | 1.8 |