WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress Cliprs plugin 1.2.3 and earlier versions have a cross-site scripting vulnerability that stems from a failure to clean up and escape its API key settings before exporting it to properties, and an attacker could use this vulnerability to execute JavaScript code on the client side.