WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress Static Page eXtended plugin version 2.1 and previous versions have a cross-site scripting vulnerability, which originates from the vulnerability of the plugin to CSRF attacks. An attacker could exploit the vulnerability to execute JavaScript code on the client side.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress static page extended plugin | lt | 2.1 |