WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. The WordPress plugin is an application plugin. WordPress Zephyr Project Manager plugin version 3.2.40 and earlier versions are vulnerable to a cross-site scripting vulnerability that stems from insufficient input cleanup and output escaping, which could be exploited by an unauthenticated attacker to inject arbitrary Web script into a page. unauthenticated attacker can use this vulnerability to inject arbitrary web script into a page.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress zephyr project manager plugin | le | 3.2.40 |